Lucene search
GoogleOSV:RLSA-2022:8252HistoryNov 15, 2022 - 6:19 a.m.
Moderate: yajl security update
2022-11-1506:19:32
Google
osv.dev
1
0.01 Low
EPSS
Percentile
83.6%
Yet Another JSON Library (YAJL) is a small event-driven (SAX-style) JSON parser written in ANSI C, and a small validating JSON generator.
Security Fix(es):
- yajl: heap-based buffer overflow when handling large inputs due to an integer overflow (CVE-2022-24795)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Rocky Linux 9.1 Release Notes linked from the References section.
Related
nessus
nessus
EulerOS 2.0 SP5 : yajl (EulerOS-SA-2022-1919)
2022-06-17 00:00:00
EulerOS Virtualization 3.0.6.0 : yajl (EulerOS-SA-2023-2217)
2023-06-13 00:00:00
EulerOS 2.0 SP9 : yajl (EulerOS-SA-2022-2786)
2022-11-14 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for yajl (EulerOS-SA-2023-1181)
2023-01-12 00:00:00
Huawei EulerOS: Security Advisory for yajl (EulerOS-SA-2023-1240)
2023-01-12 00:00:00
Huawei EulerOS: Security Advisory for yajl (EulerOS-SA-2023-1210)
2023-01-12 00:00:00
redhat
redhat
(RHSA-2022:8252) Moderate: yajl security update
2022-11-15 06:19:32
(RHSA-2022:7524) Moderate: yajl security update
2022-11-08 06:21:57
(RHSA-2024:2063) Moderate: yajl security update
2024-04-25 14:45:06
almalinux
almalinux
Moderate: yajl security update
2022-11-15 00:00:00
Moderate: yajl security update
2022-11-08 00:00:00
github
github
Buffer Overflow in yajl-ruby
2022-04-05 15:55:51
osv
osv
Moderate: yajl security update
2022-11-08 06:21:57
Buffer Overflow in yajl-ruby
2022-04-05 15:55:51
CVE-2022-24795
2022-04-05 16:15:14
prion
prion
Integer overflow
2022-04-05 16:15:00
oraclelinux
oraclelinux
yajl security update
2022-11-15 00:00:00
yajl security update
2022-11-22 00:00:00
redhatcve
redhatcve
CVE-2022-24795
2022-04-07 09:54:18
rocky
rocky
yajl security update
2022-11-08 06:21:57
yajl security update
2022-11-15 06:19:32
veracode
veracode
Denial Of Service (DoS)
2022-04-06 03:42:26
cvelist
cvelist
CVE-2022-24795 Buffer Overflow and Integer Overflow in yajl-ruby
2022-04-05 00:00:00
suse
suse
Security update for libyajl (moderate)
2022-09-07 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-24795 affecting package rubygem-yajl-ruby for versions less than 1.3.1-2
2022-09-16 06:05:31
CVE-2022-24795 affecting package rubygem-yajl-ruby 1.4.1-1
2022-05-12 02:16:39
debiancve
debiancve
CVE-2022-24795
2022-04-05 16:15:00
amazon
amazon
Medium: yajl
2023-06-21 19:11:00
cve
cve
CVE-2022-24795
2022-04-05 16:15:00
ubuntucve
ubuntucve
CVE-2022-24795
2022-04-05 00:00:00
debian
debian
[SECURITY] [DLA 3492-1] yajl security update
2023-07-11 17:49:08
[SECURITY] [DLA 3516-1] burp security update
2023-08-05 15:23:48
ubuntu
ubuntu
YAJL vulnerabilities
2023-12-14 00:00:00
YAJL vulnerabilities
2023-07-18 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: yajl-2.1.0-21.fc38
2023-07-16 01:27:03
[SECURITY] Fedora 37 Update: yajl-2.1.0-21.fc37
2023-07-27 02:05:39
photon
photon
Important Photon OS Security Update - PHSA-2022-0399
2022-06-03 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0399
2022-06-03 00:00:00
ibm
ibm