Security Update for AlmaLinux 9: Jackson Components
A new security update has been announced for AlmaLinux 9, focusing on crucial components of the Jackson library, specifically the following packages: jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base. This update is classified as important and was released on August 9, 2025.
Key Details:
- Update Identifier: ALSA-2025:12280
- Severity Level: Important
- Core Functionality: This update addresses the core aspects of Jackson, which encompasses the Streaming API and fundamental shared abstractions within the library.
Security Vulnerability Addressed:
- CVE-2025-52999: A potential StackOverflowError has been identified in the jackson-core package, which could lead to significant issues if left unaddressed.
For comprehensive details regarding the vulnerabilities, including their implications, CVSS scoring, acknowledgments, and further information, recipients are encouraged to visit the linked CVE pages provided in the announcement.
Further Information:
To view full details, updated packages, and additional resources, please visit the AlmaLinux errata page: [AlmaLinux Errata](https://errata.almalinux.org/9/ALSA-2025-12280.html).
Please note that this notification is automatically generated, and responses are not monitored. For any inquiries or support, reach out via the AlmaLinux community chat: [AlmaLinux Chat](https://chat.almalinux.org/).
Manage Your Subscription:
If you wish to modify your notification settings, you can sign in and manage your mailing lists at: [AlmaLinux Mailing Lists](https://lists.almalinux.org).
Best Regards,
The AlmaLinux Team
Extension:
In light of the evolving security landscape, it is essential for users and administrators of AlmaLinux 9 to remain vigilant about such updates. Regularly applying security patches not only helps in protecting systems from potential threats but also ensures the integrity and performance of applications relying on the affected libraries. Users are encouraged to stay informed about future updates and to participate in the AlmaLinux community for discussions on security practices and experiences with AlmaLinux
A new security update has been announced for AlmaLinux 9, focusing on crucial components of the Jackson library, specifically the following packages: jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base. This update is classified as important and was released on August 9, 2025.
Key Details:
- Update Identifier: ALSA-2025:12280
- Severity Level: Important
- Core Functionality: This update addresses the core aspects of Jackson, which encompasses the Streaming API and fundamental shared abstractions within the library.
Security Vulnerability Addressed:
- CVE-2025-52999: A potential StackOverflowError has been identified in the jackson-core package, which could lead to significant issues if left unaddressed.
For comprehensive details regarding the vulnerabilities, including their implications, CVSS scoring, acknowledgments, and further information, recipients are encouraged to visit the linked CVE pages provided in the announcement.
Further Information:
To view full details, updated packages, and additional resources, please visit the AlmaLinux errata page: [AlmaLinux Errata](https://errata.almalinux.org/9/ALSA-2025-12280.html).
Please note that this notification is automatically generated, and responses are not monitored. For any inquiries or support, reach out via the AlmaLinux community chat: [AlmaLinux Chat](https://chat.almalinux.org/).
Manage Your Subscription:
If you wish to modify your notification settings, you can sign in and manage your mailing lists at: [AlmaLinux Mailing Lists](https://lists.almalinux.org).
Best Regards,
The AlmaLinux Team
Extension:
In light of the evolving security landscape, it is essential for users and administrators of AlmaLinux 9 to remain vigilant about such updates. Regularly applying security patches not only helps in protecting systems from potential threats but also ensures the integrity and performance of applications relying on the affected libraries. Users are encouraged to stay informed about future updates and to participate in the AlmaLinux community for discussions on security practices and experiences with AlmaLinux
Jackson updates for AlmaLinux 9
A new security update has been released for AlmaLinux 9:
ALSA-2025:12280: jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base security update (Important)
