137 matches found
Cpanel::JSON::XS 安全漏洞
Cpanel::JSON::XS is a tool developed by RURBAN for converting Perl data structures into JSON format. Versions of Cpanel::JSON::XS prior to version 4.41 contained security vulnerabilities. These vulnerabilities stemmed from the use of dupkeysasarrayref, which led to type confusion when repeated...
OPENSUSE-SU-2026:10950-1 perl-Cpanel-JSON-XS-4.410.0-1.1 on GA media
These are all security issues fixed in the perl-Cpanel-JSON-XS-4.410.0-1.1 package on the GA media of openSUSE Tumbleweed...
PT-2026-45892
Name of the Vulnerable Software and Affected Versions Cpanel::JSON::XS versions prior to 4.41 Description An issue exists where providing input prefixed with a UTF-8 Byte Order Mark BOM can lead to a denial of service. When the decode json function processes a 3-byte UTF-8 BOM, it advances the...
Linux Distros Unpatched Vulnerability : CVE-2026-9334
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cpanel::JSON::XS versions before 4.41 for Perl allow type confusion via duplicate object keys when dupkeysasarrayref is enabled. decodehv collapses duplicate...
Linux Distros Unpatched Vulnerability : CVE-2026-9516
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cpanel::JSON::XS versions before 4.41 for Perl allow denial of service via UTF-8 BOM prefixed input when a decode filter callback throws. To skip a leading 3-by...
Astra Linux – Vulnerability in libcpanel-json-xs-perl
Cpanel::JSON::XS before version 4.40 for Perl has an integer buffer overflow that causes a segfault when parsing crafted JSON, allowing for denial-of-service attacks or other unspecified impacts...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: perl-JSON-XS (UTSA-2026-006133)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006133 advisory. JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other...
MiracleLinux 8 : perl-JSON-XS-3.04-4.el8_10 (AXSA:2025-10954:01)
The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10954:01 advisory. JSON-XS: integer buffer overflow causing a segfault when parsing crafted JSON CVE-2025-40928 Tenable has extracted the preceding description block directly...
MiracleLinux 9 : perl-JSON-XS-4.04-1.el9_6 (AXSA:2025-10955:02)
The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10955:02 advisory. JSON-XS: integer buffer overflow causing a segfault when parsing crafted JSON CVE-2025-40928 Tenable has extracted the preceding description block directly...
CVE-2025-40928 affecting package perl-JSON-XS for versions less than 4.04-1
CVE-2025-40928 affecting package perl-JSON-XS for versions less than 4.04-1. An upgraded version of the package is available that resolves this issue...
CVE-2025-40928 affecting package perl-JSON-XS for versions less than 4.04-1
CVE-2025-40928 affecting package perl-JSON-XS for versions less than 4.04-1. An upgraded version of the package is available that resolves this issue...
Mageia: Security Advisory (MGASA-2025-0283)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2025-0284)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2025-0284 Updated perl-Cpanel-JSON-XS packages fix security vulnerability
Cpanel::JSON::XS before version 4.40 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact. CVE-2025-40929...
MGASA-2025-0283 Updated perl-JSON-XS packages fix security vulnerability
JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact. CVE-2025-40928...
Astra Linux – Vulnerability in libjson-xs-perl
JSON::XS before version 4.04 for Perl has an integer buffer overflow that causes a segfault when parsing crafted JSON, allowing for denial-of-service attacks or other unspecified impacts...
ROS-20251030-06
A vulnerability in the Perl data structure to JSON conversion module Cpanel::JSON::XS is related to integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code on the target system...
Fedora: Security Advisory (FEDORA-2025-8b24ea25bb)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2025-ce67f2ffd1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
ROOT-OS-DEBIAN-11-CVE-2022-48623 CVE-2022-48623 in rootio-libcpanel-json-xs-perl - Patched by Root
Root has patched CVE-2022-48623 in the rootio-libcpanel-json-xs-perl package for Root:Debian:11. Multiple fixed versions available...