159 matches found
CVE-2026-32875 UltraJSON has an integer overflow handling large indent leads to buffer overflow or infinite loop
UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Versions 5.10 through 5.11.0 are vulnerable to buffer overflow or infinite loop through large indent handling. ujson.dumps crashes the Python interpreter segmentation fault when the product of the indent...
CVE-2026-32875 UltraJSON has an integer overflow handling large indent leads to buffer overflow or infinite loop
UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Versions 5.10 through 5.11.0 are vulnerable to buffer overflow or infinite loop through large indent handling. ujson.dumps crashes the Python interpreter segmentation fault when the product of the indent...
GHSA-C8RR-9GXC-JPRV UltraJSON has an integer overflow handling large indent leads to buffer overflow or infinite loop
Summary ujson.dumps crashes the Python interpreter segmentation fault when the product of the indent parameter and the nested depth of the input exceeds INT32MAX. It can also get stuck in an infinite loop if the indent is a large negative number. Both are caused by an integer overflow/underflow...
Integer Overflow or Wraparound
Overview ujson is an Ultra fast JSON encoder and decoder for Python Affected versions of this package are vulnerable to Integer Overflow or Wraparound via the indent parameter in the dumps, dump, or encode functions. An attacker can cause a crash or infinite loop by supplying large or negative...
UltraJSON has an integer overflow handling large indent leads to buffer overflow or infinite loop
Summary ujson.dumps crashes the Python interpreter segmentation fault when the product of the indent parameter and the nested depth of the input exceeds INT32MAX. It can also get stuck in an infinite loop if the indent is a large negative number. Both are caused by an integer overflow/underflow...
Azure Linux 3.0 Security Update: indent (CVE-2023-40305)
The version of indent installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-40305 advisory. - GNU indent 2.2.13 has a heap-based buffer overflow in searchbrace in indent.c via a crafted file...
EUVD-2023-44897
Malicious code in bioql PyPI...
EUVD-2022-0348
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2023-40305
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GNU indent 2.2.13 has a heap-based buffer overflow in searchbrace in indent.c via a crafted file. CVE-2023-40305 Note that Nessus relies on the presence of the...
Linux Distros Unpatched Vulnerability : CVE-2024-0911
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in indent, a program for formatting C code. This issue may allow an attacker to trick a user into processing a specially crafted file to trigge...
CVE-2023-40305 affecting package indent for versions less than 2.2.13-1
CVE-2023-40305 affecting package indent for versions less than 2.2.13-1. A patched version of the package is available...
GNU indent 2.2.13 has a heap-based buffer overflow in search_brace in indent.c via a crafted file.
...
EulerOS 2.0 SP8 : indent (EulerOS-SA-2024-2474)
According to the versions of the indent package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in indent, a program for formatting C code. This issue may allow an attacker to trick a user into processing a specially crafted...
Huawei EulerOS: Security Advisory for indent (EulerOS-SA-2024-2474)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for indent (EulerOS-SA-2024-2036)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP8 : indent (EulerOS-SA-2024-2036)
According to the versions of the indent package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in indent, a program for formatting C code. This issue may allow an attacker to trick a user into processing a specially crafted...
OPENSUSE-SU-2024:13700-1 indent-2.2.13-3.1 on GA media
These are all security issues fixed in the indent-2.2.13-3.1 package on the GA media of openSUSE Tumbleweed...
Mageia: Security Advisory (MGASA-2024-0122)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2024-0122 Updated indent packages fix security vulnerability
A flaw was found in indent, a program for formatting C code. This issue may allow an attacker to trick a user into processing a specially crafted file to trigger a heap-based buffer overflow, causing the application to crash. CVE-2024-0911...
Updated indent packages fix security vulnerability
A flaw was found in indent, a program for formatting C code. This issue may allow an attacker to trick a user into processing a specially crafted file to trigger a heap-based buffer overflow, causing the application to crash. CVE-2024-0911...