json-smart/pom.xml | 2 2 + 0 - 0 !
1 file changed, 2 insertions(+)

 set the version and the type of the accessors-smart dependency

accessors-smart/src/test/java/net/minidev/asm/TestDateConvert.java | 12 6 + 6 - 0 !
1 file changed, 6 insertions(+), 6 deletions(-)

 ignore testdateconvert due to timezone dependent tests

Bug: https://github.com/netplex/json-smart-v2/issues/29

accessors-smart/pom.xml | 1 1 + 0 - 0 !
json-smart/pom.xml | 1 1 + 0 - 0 !
2 files changed, 2 insertions(+)

 maven bundle plugin failok

Workaround for #868913.

Bug-Debian: https://bugs.debian.org/868603

json-smart/src/main/java/net/minidev/json/parser/JSONParserByteArray.java | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 cve-2021-31684: fix indexof

A vulnerability was discovered in the indexOf function of JSONParserByteArray
in JSON Smart versions 1.3 and 2.4 which causes a denial of service (DOS)
via a crafted web request.

json-smart/src/main/java/net/minidev/json/parser/JSONParserBase.java | 17 16 + 1 - 0 !
json-smart/src/main/java/net/minidev/json/parser/ParseException.java | 9 8 + 1 - 0 !
json-smart/src/test/java/net/minidev/json/test/TestOverflow.java | 27 27 + 0 - 0 !
3 files changed, 51 insertions(+), 2 deletions(-)

 cve-2023-1370: stack overflow due to excessive recursion
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit

When reaching a [ or { character in the JSON input, the code
parses an array or an object respectively. It was discovered that the
code does not have any limit to the nesting of such arrays or
objects. Since the parsing of nested arrays and objects is done
recursively, nesting too many of them can cause a stack exhaustion
(stack overflow) and crash the software.