Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 536
Alerts This Week
Warning Icon 1 536

Rocky Linux 9 jackson-annotations Important Code Execution Risk RLSA-2026

rocky
Calendar Grey July 17, 2026
Scroller Rockylinux
Security updates for critical Jackson libraries on Rocky Linux 9 help mitigate risks of arbitrary code execution. Stay protected!
Important: jackson-annotations, jackson-core, jackson-databind, jackson-jaxrs-providers, and jackson-modules-base security update

Summary

An update is available for jackson-modules-base, jackson-databind, jackson-jaxrs-providers, jackson-annotations, jackson-core. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RPMs

jackson-annotations-0:2.21-1.el9_8.src.rpm

jackson-core-0:2.21.4-1.el9_8.src.rpm

jackson-databind-0:2.21.4-1.el9_8.src.rpm

jackson-jaxrs-providers-0:2.21.4-1.el9_8.src.rpm

jackson-modules-base-0:2.21.4-1.el9_8.src.rpm

pki-jackson-annotations-0:2.21-1.el9_8.noarch.rpm

pki-jackson-core-0:2.21.4-1.el9_8.noarch.rpm

pki-jackson-databind-0:2.21.4-1.el9_8.noarch.rpm

pki-jackson-jaxrs-json-provider-0:2.21.4-1.el9_8.noarch.rpm

pki-jackson-jaxrs-providers-0:2.21.4-1.el9_8.noarch.rpm

pki-jackson-module-jaxb-annotations-0:2.21.4-1.el9_8.noarch.rpm

References

No references

CVES

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-54512

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-54513

Severity
important
Lowest
Low
Medium
High
Critical

Name: RLSA-2026:40895
Affected Products: Rocky Linux 9

Fixes

https://bugzilla.redhat.com/show_bug.cgi?id=2492010

https://bugzilla.redhat.com/show_bug.cgi?id=2492015


Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.