Upgrade SLES:15.5 ocfs2-kmp-default to version 5.14.21-150500.55.88.1 or higher.

jboss-marshalling vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the jboss-marshalling package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
H Improper Input Validation	<0:1.4.10-3.SP3_redhat_1.1.ep6.el7
M Directory Traversal	<0:1.4.10-2.SP2_redhat_1.1.ep6.el7
M Improper Cleanup on Thrown Exception	<0:1.4.10-1.Final_redhat_1.1.ep6.el7
M Improper Access Control	<0:1.4.10-1.Final_redhat_1.1.ep6.el7
M Incorrect Authorization	<0:1.4.10-1.Final_redhat_1.1.ep6.el7
M Incorrect Authorization	<0:1.4.10-1.Final_redhat_1.1.ep6.el7
L Incorrect Privilege Assignment	<0:1.4.8-1.Final_redhat_1.1.ep6.el7
H Incorrect Privilege Assignment	<0:1.4.10-3.SP3_redhat_1.1.ep6.el7
H Deserialization of Untrusted Data	<0:1.4.10-3.SP3_redhat_1.1.ep6.el7
M Security Features	<0:1.4.10-2.SP2_redhat_1.1.ep6.el7
M Security Features	<0:1.4.10-2.SP2_redhat_1.1.ep6.el7
M XML External Entity (XXE) Injection	<0:1.4.10-1.Final_redhat_1.1.ep6.el7