EUVD-2021-19147

Malware in sbrugna...

TencentOS Server 4: json-c (TSSA-2025:0146)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0146 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

K000150300: json-c vulnerability CVE-2013-6370 and CVE-2013-6371

Security Advisory Description CVE-2013-6370 Buffer overflow in the printbuf APIs in json-c before 0.12 allows remote attackers to cause a denial of service via unspecified vectors. CVE-2013-6371 The hash functionality in json-c before 0.12 allows context-dependent attackers to cause a denial of...

K000150297: json-c vulnerability CVE-2020-12762

Security Advisory Description json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend. CVE-2020-12762 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5 Product...

Denial Of Service (DoS)

libjson-c.so is vulnerable to Denial Of Service DoS. The vulnerability exists when parsing crafted JSON data, resulting in excessive CPU utilization caused by a hash collision which allows an attacker to cause an application crash...

json-c 缓冲区错误漏洞

json-c is a C-based JSON parser. A buffer error vulnerability exists in json-c 0.15-20200726 and earlier versions, which stems from a buffer overflow vulnerability in the function parseit. An attacker can exploit this vulnerability to execute arbitrary code...

Important: json-c

Issue Overview: A flaw was found in json-c. In printbufmemappend, certain crafted values can overflow the memory allowing an attacker to write past the memory boundary. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. CVE-2020-127...

SUSE SLES15 Security Update : json-c (SUSE-SU-2022:0184-2)

The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2022:0184-2 advisory. - json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend. CVE-2020-12762 Note...

Security Bulletin: IBM MQ is affected by a vulnerability in json-c (CVE-2020-12762)

Summary An applicable vulnerability was found in the json-c library that is bundled with MQ server and native client installations. Vulnerability Details CVEID: CVE-2020-12762 DESCRIPTION: json-c could allow a remote attacker to execute arbitrary code on the system, caused by an integer overflow...

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : json-c vulnerability (USN-4360-4)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4360-4 advisory. USN-4360-1 fixed a vulnerability in json-c. The security fix introduced a memory leak that was reverted in USN-4360-2 and USN-4360-3. This...

json-c integer overflow and out-of-bounds write vulnerability

json-c is a C implementation of JSON. An integer overflow and out-of-bounds write vulnerability exists in json-c 0.14 and earlier. An attacker can exploit this vulnerability to cause integer overflow and out-of-bounds writes via large JSON files...

CVE-2020-12762

json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend...

PT-2020-6199 · Json-C +10 · Json-C +10

Name of the Vulnerable Software and Affected Versions: json-c versions 0.14 and earlier Description: The issue is related to an integer overflow and out-of-bounds write in json-c, which can be triggered by a large JSON file. This can be demonstrated by the printbuf memappend function. The...