CVE-2011-2532

2011-06-22T21:55:00
ID CVE-2011-2532
Type cve
Reporter cve@mitre.org
Modified 2011-06-28T04:00:00

Description

The json.decode function in util/json.lua in Prosody 0.8.x before 0.8.1 might allow remote attackers to cause a denial of service (infinite loop) via invalid JSON data, as demonstrated by truncated data.