Huawei EulerOS: Security Advisory for json-c (EulerOS-SA-2020-1733)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux 2 : json-c (ALAS-2020-1442)

The version of json-c installed on the remote host is prior to 0.11-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2020-1442 advisory. json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend...

Amazon Linux AMI : json-c (ALAS-2020-1381)

The version of json-c installed on the remote host is prior to 0.11-7.8. It is, therefore, affected by a vulnerability as referenced in the ALAS-2020-1381 advisory. json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend...

EulerOS Virtualization 3.0.6.0 : json-c (EulerOS-SA-2020-1733)

According to the version of the json-c packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by...

Medium: json-c

Issue Overview: json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend. CVE-2020-12762 Affected Packages: json-c Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the...

Medium: json-c

Issue Overview: json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend. CVE-2020-12762 Affected Packages: json-c Issue Correction: Run yum update json-c or yum update --advisory ALAS-2020-1381 to update your system. New...

Huawei EulerOS: Security Advisory for json-c (EulerOS-SA-2020-1705)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization for ARM 64 3.0.6.0 : json-c (EulerOS-SA-2020-1705)

According to the version of the json-c package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by...

USN-4360-4: json-c vulnerability | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description USN-4360-1 fixed a vulnerability in json-c. The security fix introduced a memory leak that was reverted in USN-4360-2 and USN-4360-3. This update provides the...

USN-4360-2: json-c regression | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description USN-4360-1 fixed a vulnerability in json-c. The security fix introduced a memory leak in some scenarios. This update reverts the security fix pending further investigation. We...

USN-4360-1: json-c vulnerability | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Canonical Ubuntu 16.04 Canonical Ubuntu 18.04 Description It was discovered that json-c incorrectly handled certain JSON files. An attacker could possibly use this issue to execute arbitrary code. CVEs contained in...

json-c:tokener_parse_ex_fuzzer: Global-buffer-overflow in json_tokener_parse_ex

Project: https://github.com/json-c/json-c.git Detailed Report: https://oss-fuzz.com/testcase?key=6193200317595648 Project: json-c Fuzzing Engine: libFuzzer Fuzz Target: tokenerparseexfuzzer Job Type: libfuzzerasani386json-c Platform Id: linux Crash Type: Global-buffer-overflow READ 4 Crash Addres...

GLSA-202006-13 : json-c: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202006-13 json-c: Multiple vulnerabilities Multiple vulnerabilities have been discovered in json-c. Please review the CVE identifiers referenced below for details. Impact : A remote/local attacker could send a specially crafted fi...

EulerOS 2.0 SP2 : json-c (EulerOS-SA-2020-1680)

According to the version of the json-c package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend.CVE-2020-12762 Note...

Huawei EulerOS: Security Advisory for json-c (EulerOS-SA-2020-1680)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

json-c: Multiple vulnerabilities

Background json-c is a JSON implementation in C. Description Multiple vulnerabilities have been discovered in json-c. Please review the CVE identifiers referenced below for details. Impact A remote/local attacker could send a specially crafted file possibly resulting in a Denial of Service...

Huawei EulerOS: Security Advisory for json-c (EulerOS-SA-2020-1605)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0249

An update of 'sqlite', 'bindutils', 'json-c' packages of Photon OS has been released...

Important Photon OS Security Update - PHSA-2020-0249

Updates of 'bindutils', 'sqlite', 'json-c' packages of Photon OS have been released...

EulerOS 2.0 SP5 : json-c (EulerOS-SA-2020-1605)

According to the version of the json-c package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend.CVE-2020-12762 Note...