DEBIAN-CVE-2024-31755

cJSON v1.7.17 was discovered to contain a segmentation violation, which can trigger through the second parameter of function cJSONSetValuestring at cJSON.c...

CVE-2024-31755

cJSON v1.7.17 was discovered to contain a segmentation violation, which can trigger through the second parameter of function cJSONSetValuestring at cJSON.c...

AZL-40184 CVE-2024-31755 affecting package apparmor for versions less than 3.0.4-4

cJSON v1.7.17 was discovered to contain a segmentation violation, which can trigger through the second parameter of function cJSONSetValuestring at cJSON.c...

CVE-2024-31755

cJSON v1.7.17 was discovered to contain a segmentation violation, which can trigger through the second parameter of function cJSONSetValuestring at cJSON.c...

UBUNTU-CVE-2024-31755

cJSON v1.7.17 was discovered to contain a segmentation violation, which can trigger through the second parameter of function cJSONSetValuestring at cJSON.c...

CVE-2024-31755

cJSON v1.7.17 was discovered to contain a segmentation violation, which can trigger through the second parameter of function cJSONSetValuestring at cJSON.c...

CVE-2024-31755

cJSON v1.7.17 was discovered to contain a segmentation violation, which can trigger through the second parameter of function cJSONSetValuestring at cJSON.c...

CVE-2024-31755

CVE-2024-31755 affects cJSON v1.7.17, where a segmentation fault can be triggered via the second parameter to cJSON_SetValuestring in cJSON.c. The Connected documents corroborate exploitation in multiple Linux distributions and advisories, e.g., Fedora/Fedora security updates reference cjson-1.7....

cJSON 安全漏洞

cJSON is a lightweight open source JSON parser. A security vulnerability exists in cJSON version v1.7.17, which stems from the inclusion of a segmentation violation, and can be triggered by the second parameter of the cJSONSetValuestring function in cJSON.c. The vulnerability can be exploited by...

CVE-2024-31755

cJSON v1.7.17 was discovered to contain a segmentation violation, which can trigger through the second parameter of function cJSONSetValuestring at cJSON.c...

[SECURITY] Fedora 38 Update: cjson-1.7.17-1.fc38

cJSON aims to be the dumbest possible parser that you can get your job done with. It's a single file of C, and a single header file...

[SECURITY] Fedora 39 Update: cjson-1.7.17-1.fc39

cJSON aims to be the dumbest possible parser that you can get your job done with. It's a single file of C, and a single header file...

[SECURITY] Fedora 40 Update: cjson-1.7.17-1.fc40

cJSON aims to be the dumbest possible parser that you can get your job done with. It's a single file of C, and a single header file...

Fedora 39 : cjson (2024-74563262c0)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-74563262c0 advisory. Update to latest upstream version 1.7.17 closes rhbz2255953 Tenable has extracted the preceding description block directly from the Fedora security advisory...

Fedora 38 : cjson (2024-5b487ca10a)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-5b487ca10a advisory. Update to latest upstream version 1.7.17 closes rhbz2255953 Tenable has extracted the preceding description block directly from the Fedora security advisory...

PT-2024-10424 · Cjson +3 · Cjson +3

Name of the Vulnerable Software and Affected Versions: cJSON version 1.7.17 Description: The issue is related to a segmentation violation that can be triggered through the second parameter of the cJSON SetValuestring function at cJSON.c. This can lead to a denial of service. The vulnerability is...

BIT-REDIS-2022-24834 Heap overflow issue with the Lua cjson library used by Redis

Redis is an in-memory database that persists on disk. A specially crafted Lua script executing in Redis can trigger a heap overflow in the cjson library, and result with heap corruption and potentially remote code execution. The problem exists in all versions of Redis with Lua scripting support,...

BIT-APISIX-2022-25757 Apache APISIX: the body_schema check in request-validation plugin can be bypassed

In Apache APISIX before 2.13.0, when decoding JSON with duplicate keys, lua-cjson will choose the last occurred value as the result. By passing a JSON with a duplicate key, the attacker can bypass the bodyschema validation in the request-validation plugin. For example,...

Debian: Security Advisory (DLA-3700-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3700-1] cjson security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3700-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz December 30, 2023 https://wiki.debian.org/LTS -...