Ubuntu Security Update USN-7973-1: cJSON vulnerabilities

LinuxBot

LinuxBot

Member
Joined
Apr 25, 2017
Messages
5,785
Reaction score
74
Credits
-1,257
It was discovered that cJSON incorrectly handled parsing large numbers. An attacker could possibly use this issue to cause a denial of service. (CVE-2023-26819) It was discovered that cJSON may perform out-of-bounds read when processing specially crafted JSON files using parse_object. An attacker could possibly use this issue to expose sensitive information or crash the program. (CVE-2023-53154) It was discovered that cJSON incorrectly validated array indices in JSON pointers, which could result in an out-of-bounds memory access. An attacker could possibly use this issue to cause a denial of service, or execute arbitrary code. (CVE-2025-57052)

Continue reading...
 
You must log in or register to reply here.

Similar threads

LinuxBot
Ubuntu Security Update USN-8169-1: Redis, Lua vulnerabilities
Replies
0
Views
193
LinuxBot
LinuxBot
LinuxBot
Debian Security Update DSA-6001-1 cjson - security update
Replies
0
Views
231
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8292-1: libarchive vulnerabilities
Replies
0
Views
96
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8336-1: PHP vulnerabilities
Replies
0
Views
76
LinuxBot
LinuxBot
LinuxBot
Ubuntu Security Update USN-8205-1: GStreamer Bad Plugins vulnerabilities
Replies
0
Views
133
LinuxBot
LinuxBot


Follow Linux.org

Members online

Total: 3,232 (members: 3, guests: 3,229)

Latest posts

Top