ALSA-2025:17162 Moderate: perl-JSON-XS security update

This module converts Perl data structures to JSON and vice versa. Its primary goal is to be correct and its secondary goal is to be fast. To reach the latter goal it was written in C. Security Fixes: JSON-XS: integer buffer overflow causing a segfault when parsing crafted JSON CVE-2025-40928 For...

RHEL 9 : perl-JSON-XS (RHSA-2025:17162)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:17162 advisory. This module converts Perl data structures to JSON and vice versa. Its primary goal is to be correct and its secondary goal is to be fast. To reach t...

Moderate: Red Hat Security Advisory: perl-JSON-XS security update

An update for perl-JSON-XS is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

Amazon Linux 2023 : perl-JSON-XS, perl-JSON-XS-tests (ALAS2023-2025-1200)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1200 advisory. JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact CVE-2025-40928 Tenable...

Medium: perl-JSON-XS

Issue Overview: JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact CVE-2025-40928 Affected Packages: perl-JSON-XS Issue Correction: Run dnf update perl-JSON-XS --releasev...

Medium: perl-JSON-XS

Issue Overview: JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact CVE-2025-40928 Affected Packages: perl-JSON-XS Note: This advisory is applicable to Amazon Linux 2 AL2...

CVE-2022-48623 affecting package perl-Cpanel-JSON-XS for versions less than 4.39-1

CVE-2022-48623 affecting package perl-Cpanel-JSON-XS for versions less than 4.39-1. An upgraded version of the package is available that resolves this issue...

[SECURITY] Fedora 41 Update: perl-Cpanel-JSON-XS-4.40-1.fc41

This module converts Perl data structures to JSON and vice versa. Its primary goal is to be correct and its secondary goal is to be fast. To reach the latter goal it was written in C...

[SECURITY] Fedora 42 Update: perl-Cpanel-JSON-XS-4.40-1.fc42

This module converts Perl data structures to JSON and vice versa. Its primary goal is to be correct and its secondary goal is to be fast. To reach the latter goal it was written in C...

Fedora 42 : perl-Cpanel-JSON-XS (2025-f4f4dae8f2)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-f4f4dae8f2 advisory. This update fixes an issue where a specially-crafted JSON input could cause an integer overflow leading to a crash in the program parsing the JSON...

[SECURITY] Fedora 42 Update: perl-JSON-XS-4.04-1.fc42

This module converts Perl data structures to JSON and vice versa. Its primary goal is to be correct and its secondary goal is to be fast. To reach the latter goal it was written in C...

[SECURITY] Fedora 43 Update: perl-JSON-XS-4.04-1.fc43

This module converts Perl data structures to JSON and vice versa. Its primary goal is to be correct and its secondary goal is to be fast. To reach the latter goal it was written in C...

Fedora: Security Advisory (FEDORA-2025-53273e282c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2025-86573bd5d5)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 41 : perl-JSON-XS (2025-86573bd5d5)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-86573bd5d5 advisory. This update updates perl-JSON-XS 4.04. This version fixes heap overflow causing crashes, possibly information disclosure or worse CVE-2025-40928 and causes...

Fedora 42 : perl-JSON-XS (2025-53273e282c)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-53273e282c advisory. This update updates perl-JSON-XS 4.04. This version fixes heap overflow causing crashes, possibly information disclosure or worse CVE-2025-40928 and causes...

Fedora 43 : perl-JSON-XS (2025-8b24ea25bb)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-8b24ea25bb advisory. This update updates perl-JSON-XS 4.04. This version fixes heap overflow causing crashes, possibly information disclosure or worse CVE-2025-40928 and causes...

Ubuntu 22.04 LTS / 24.04 LTS / 25.04 : Cpanel-JSON-XS vulnerability (USN-7749-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.04 host has a package installed that is affected by a vulnerability as referenced in the USN-7749-1 advisory. It was discovered that Cpanel-JSON-XS incorrectly handled parsing certain JSON data. An attacker could possibly use this issue to cause...

Ubuntu 22.04 LTS / 24.04 LTS / 25.04 : JSON-XS vulnerability (USN-7750-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.04 host has a package installed that is affected by a vulnerability as referenced in the USN-7750-1 advisory. It was discovered that JSON-XS incorrectly handled parsing certain JSON data. An attacker could possibly use this issue to cause JSON-XS to...

Ubuntu: Security Advisory (USN-7749-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...