Joda Time v2.12.5 was discovered to contain a NullPointerException via the component org.joda.time.format.PeriodFormat::wordBased(Locale). http://joda.com https://gist.github.com/LLM4IG/6614bfa658295d7af07a6d37e06db27f https://github.com/JodaOrg/joda-time
Created picocli tracking bugs for this issue: Affects: fedora-all [bug 2274518]
This issue was raised by an AI-driven bot. The CVE describes that a NullPointerException is thrown when null is passed into a method. This is perfectly normal and not a security issue or CVE. Users of Joda-Time do not need to take any action as the CVE is invalid. This has been confirmed by the Joda-Time Security team at https://www.joda.org/joda-time//security.html.