358 matches found
OESA-2025-1995 cjson security update
cJSON aims to be the dumbest possible parser that you can get your job done with. It's a single file of C, and a single header file. %package devel Summary: Development files for cJSON Requires: = - Requires: pkgconfig %description devel The cjson-devel package contains libraries and header files...
OESA-2025-1994 cjson security update
cJSON aims to be the dumbest possible parser that you can get your job done with. It's a single file of C, and a single header file. %package devel Summary: Development files for cJSON Requires: = - Requires: pkgconfig %description devel The cjson-devel package contains libraries and header files...
OESA-2025-1993 cjson security update
cJSON aims to be the dumbest possible parser that you can get your job done with. It's a single file of C, and a single header file. %package devel Summary: Development files for cJSON Requires: = - Requires: pkgconfig %description devel The cjson-devel package contains libraries and header files...
OESA-2025-1992 cjson security update
cJSON aims to be the dumbest possible parser that you can get your job done with. It's a single file of C, and a single header file. %package devel Summary: Development files for cJSON Requires: = - Requires: pkgconfig %description devel The cjson-devel package contains libraries and header files...
OESA-2025-1965 cjson security update
cJSON aims to be the dumbest possible parser that you can get your job done with. It's a single file of C, and a single header file. %package devel Summary: Development files for cJSON Requires: = - Requires: pkgconfig %description devel The cjson-devel package contains libraries and header files...
The vulnerability of the authentication protocol implementation of the MongoDB database management system’s OIDC server allows a perpetrator to induce a service failure.
The vulnerability of the OIDC authentication protocol implementation in MongoDB database management systems is related to deficiencies in the mechanism for verifying input data. Exploiting this vulnerability allows a malicious actor to cause service failures by sending a specially crafted JSON fi...
CVE-2023-39685
An issue in hjson-java up to v3.0.0 allows attackers to cause a Denial of Service DoS via supplying a crafted JSON string...
SUSE CVE-2025-3757
Versions of OpenPubkey library prior to 0.10.0 contained a vulnerability that would allow a specially crafted JWS to bypass signature verification...
SUSE CVE-2023-26819
cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as "a": true, "b": null,9999999999999999999999999999999999999999999999912345678901234567...
DEBIAN-CVE-2023-26819
cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as "a": true, "b": null,9999999999999999999999999999999999999999999999912345678901234567...
AZL-60883 CVE-2023-26819 affecting package ceph 18.2.2-12
cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as "a": true, "b": null,9999999999999999999999999999999999999999999999912345678901234567...
UBUNTU-CVE-2023-26819
cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as "a": true, "b": null,9999999999999999999999999999999999999999999999912345678901234567...
CVE-2023-26819
CVE-2023-26819 affects the cJSON library (v1.7.15) and can cause a denial of service when parsing crafted JSON like {"a": true, "b": [null, 9999...}] with extremely large numbers. Public advisories (Ubuntu USN-7973-1; Debian DLA-4216) confirm vulnerable package versions and provide fixes in subse...
CVE-2023-26819
cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as "a": true, "b": null,9999999999999999999999999999999999999999999999912345678901234567...
CVE-2023-26819
cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as "a": true, "b": null,9999999999999999999999999999999999999999999999912345678901234567...
PT-2025-17394
Name of the Vulnerable Software and Affected Versions cJSON version 1.7.15 Description The issue might allow a denial of service via a crafted JSON document. For example, a document such as "a": true, "b": null,9999999999999999999999999999999999999999999999912345678901234567 could be used...
CVE-2023-26819
cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as "a": true, "b": null,9999999999999999999999999999999999999999999999912345678901234567...
PT-2025-36474
Name of the Vulnerable Software and Affected Versions: Cpanel::JSON::XS versions prior to 4.40 Description: Cpanel::JSON::XS, a Perl module, contains an integer buffer overflow. This overflow occurs when parsing specially crafted JSON data, leading to a segmentation fault. This can result in...
Stack-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow through the apply function in org/jsonschema2pojo/rules/SchemaRule.java. An attacker can execute arbitrary code or cause denial of service by manipulating the JSON file input to trigger a stack-based buffer...
json-smart: Potential DoS via stack exhaustion (incomplete fix for CVE-2023-1370)
A flaw was found in the JSON-smart library. In affected versions, specially crafted JSON input may trigger stack exhaustion, potentially leading to an application crash or denial of service. This issue exists due to an incomplete fix for CVE-2023-1370...