Hash collision in typelevel jawn

🗓️ 06 Jan 2022 23:35:48Reported by GitHub Advisory DatabaseType

Hash collision vulnerability in typelevel jaw

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 15
SUSE Linux	Security update for jawn (moderate)	11 Jan 202200:00	–	suse
SUSE Linux	Security update for jawn (important)	18 Jan 202200:00	–	suse
SUSE Linux	Security update for jaw (moderate)	21 Feb 202200:00	–	suse
Prion	Code injection	5 Jan 202221:15	–	prion
Veracode	Denial Of Service (DoS)	7 Jan 202205:37	–	veracode
Tenable Nessus	openSUSE 15 Security Update : jawn (openSUSE-SU-2022:0011-1)	12 Jan 202200:00	–	nessus
Tenable Nessus	openSUSE 15 Security Update : jawn (openSUSE-SU-2022:0106-1)	19 Jan 202200:00	–	nessus
UbuntuCve	CVE-2022-21653	5 Jan 202200:00	–	ubuntucve
OSV	CVE-2022-21653	5 Jan 202221:15	–	osv
OSV	Hash collision in typelevel jawn	6 Jan 202223:48	–	osv

Vulners

Node

org.typelevel jawn-parserRange<1.3.2

Source	Link
github	www.github.com/typelevel/jawn/security/advisories/GHSA-vc89-hccf-rq55
nvd	www.nvd.nist.gov/vuln/detail/CVE-2022-21653
github	www.github.com/typelevel/jawn/pull/390
github	www.github.com/advisories/GHSA-vc89-hccf-rq55

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo