Issues
- 0
Warning of use of Unsafe in JDK 23
#362 opened by Thihup - 1
info required for compatible version with openjdk21
#361 opened by sahil3390 - 1
- 6
- 2
- 2
Alias using serialization proxy pattern ?
#358 opened by jjazzboss - 6
CustomObjectInputStream's readInt throws a cast error if the read data is a Byte.
#357 opened by thxwelchs - 1
- 1
The vulnerabilities database NVD only finds xstream component with VENDOR= xstream_project
#354 opened by joseluiswork - 4
Problem of TreeSet/TreeMap
#353 opened by urn1ce - 2
- 0
Avoid SimpleDateFormat
#348 opened by tristantarrant - 1
Maven errors with java 21
#352 opened by nobody102 - 1
- 0
- 3
DomReader: slow performance $O(n^2)$ when deserialize on millions of elements to list
#342 opened by morris821028 - 1
Using xStream_1_4_20, Not able to convert AtomicReference atomicRef = new AtomicReference(); with default value. It is giving NullpointerException.
#326 opened by ajaysharma2 - 1
Support Record Classes
#345 opened by jpink - 1
- 0
- 1
We have requested that one will remain for woodstox (CVE-2022-40152), and that the duplicates (CVE-2022-40153, CVE-2022-40154, CVE-2022-40155 and CVE-2022-40156) will be deleted. Those using Woodstox in Xstream have DTD support enabled by default, at least that's the way how the vulnerability in woodstox was found, see [Xstream fuzz target](https://github.com/google/oss-fuzz/blob/master/projects/xstream/XmlFuzzer.java).
#320 opened by dockter34 - 3
how both text and sub tags exist
#341 opened by lixun027 - 1
Unmodifiable Lists converter
#340 opened by adjiandov - 4
Any plans to support GraalVM Native Image?
#325 opened by wangliang181230 - 3
- 1
`PrettyPrintWriter` cannot write emoji in XML 1.1 mode
#336 opened by jglick - 1
Illegal reflective access by com.thoughtworks.xstream.converters.reflection.FieldDictionary
#327 opened by elavy-harris - 1
- 1
XStreamOmitField default value
#332 opened by quantrpeter - 2
Convert in mother class won't work
#329 opened by quantrpeter - 2
unable to deserialize to object
#328 opened by quantrpeter - 2
Unable to serialize `AtomicBoolean` on Java 17
#308 opened by basil - 3
how to use Xstream convert from XML to javabean
#301 opened by better-kay - 3
ForbiddenClassException and how to avoid it ?
#302 opened by Shikari0744 - 1
alias collection type
#306 opened by adjiandov - 3
Unable to serialize Oracle DB objects using xstream
#318 opened by Sarthak160 - 6
Stackoverflow CVE-2022-40151
#314 opened by henryrneh - 45
New OSS-Fuzz Findings in xstream
#304 opened by henryrneh - 1
XStream Core latest version 1.4.19 is vulnerable
#319 opened by ncteam1990 - 0
- 1
1.4.19 Vulnerable to DoS
#310 opened by rabeltra - 1
Potential performance improvements to FieldDictionary from 2015 still not released
#312 opened by mdealer - 3
New version published
#307 opened by punkdis - 8
What is the trigger condition of CVE-2022-40156 CVE-2022-40153 CVE-2022-40154 CVE-2022-40155, XStream. fromXML? Is the version affected only when XStream.fromXML is called?
#311 opened by BadTrasher - 0
XStream cant`t support Inherit JavaBean
#315 opened by gengzhy - 8
- 1
Versión 1.4.19 que rompe JMapper con com.thoughtworks.xstream.security.ForbiddenClassException: com.googlecode.jmapper.xml.beans.XmlJmapper
#305 opened by luismora1224 - 1
how to use Xstream convert to xml
#300 opened by better-kay - 0
Sonarqube Fixes
#298 opened by gorky - 0
Sonarqube Fixes
#296 opened by gorky