SUSE-SU-2026:21756-1 Security update for mcphost

This update for mcphost fixes the following issues - CVE-2025-30153: github.com/getkin/kin-openapi/openapi3filter: Improper Handling of Highly Compressed Data Data Amplification in github.com/getkin/kin-openapi/openapi3filter bsc1264762. - CVE-2025-47913: golang.org/x/crypto/ssh/agent: client...

SUSE-SU-2026:21827-1 Security update for mcphost

This update for mcphost fixes the following issues - CVE-2025-30153: github.com/getkin/kin-openapi/openapi3filter: Improper Handling of Highly Compressed Data Data Amplification in github.com/getkin/kin-openapi/openapi3filter bsc1264762. - CVE-2025-47913: golang.org/x/crypto/ssh/agent: client...

ROOT-APP-GOBINARY-CVE-2026-32285 CVE-2026-32285 in rootio-github.com/buger/jsonparser - Patched by Root

Root has patched CVE-2026-32285 in the rootio-github.com/buger/jsonparser package for Root:Go. Multiple fixed versions available...

CVE-2026-32285 Denial of service in github.com/buger/jsonparser

The Delete function fails to properly validate offsets when processing malformed JSON input. This can lead to a negative slice index and a runtime panic, allowing a denial of service attack...

CVE-2026-32285

CVE-2026-32285 concerns the Go JSON parser library bug in github.com/buger/jsonparser where the Delete function fails to validate offsets for malformed JSON input. This can yield a negative slice index and a runtime panic, resulting in a denial of service. The affected component is the Delete ope...

CVE-2026-32285 Denial of service in github.com/buger/jsonparser

The Delete function fails to properly validate offsets when processing malformed JSON input. This can lead to a negative slice index and a runtime panic, allowing a denial of service attack...

github.com/buger/jsonparser has a denial of service vulnerability

The Delete function fails to properly validate offsets when processing malformed JSON input. This can lead to a negative slice index and a runtime panic, allowing a denial of service attack...

GHSA-6G7G-W4F8-9C9X github.com/buger/jsonparser has a denial of service vulnerability

The Delete function fails to properly validate offsets when processing malformed JSON input. This can lead to a negative slice index and a runtime panic, allowing a denial of service attack...

Uncaught Exception

Overview github.com/buger/jsonparser is an Alternative JSON parser for Go. Affected versions of this package are vulnerable to Uncaught Exception via the Delete function when processing malformed JSON input. An attacker can cause a runtime panic and disrupt service availability by submitting...

GO-2026-4514 Denial of service in github.com/buger/jsonparser

The Delete function fails to properly validate offsets when processing malformed JSON input. This can lead to a negative slice index and a runtime panic, allowing a denial of service attack...

EUVD-2021-1184

Malware in sbrugna...

EUVD-2022-4344

Malicious code in bioql PyPI...

EUVD-2022-3245

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2020-10675

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Library API in buger jsonparser through 2019-12-04 allows attackers to cause a denial of service infinite loop via a Delete call. CVE-2020-10675 Note that...

Linux Distros Unpatched Vulnerability : CVE-2020-35381

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jsonparser 1.0.0 allows attackers to cause a denial of service panic: runtime error: slice bounds out of range via a GET call. CVE-2020-35381 Note that Nessus...

CVE-2013-3300

The JsonParser class in json/JsonParser.scala in Lift before 2.5 interprets a certain end-index value as a length value, which allows remote authenticated users to obtain sensitive information from other users' sessions via invalid input data containing a less than character...

PT-2025-5776 · Unknown +2 · Netplex Json-Smart +4

Name of the Vulnerable Software and Affected Versions: Netplex Json-smart versions 2.5.0 through 2.5.1 Confluence Data Center and Server versions prior to 8.5.22 Confluence Data Center and Server versions prior to 9.2.4 Confluence Data Center and Server versions prior to 9.4.1 Bamboo Data Center...

OSV-2023-1300 Security exception in com.fasterxml.jackson.core.JsonParser.currentName

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65024 Crash type: Security exception Crash state: com.fasterxml.jackson.core.JsonParser.currentName com.fasterxml.jackson.dataformat.yaml.YAMLParser.currentName com.fasterxml.jackson.dataformat.yaml.YAMLParser.getCurrentName...

[SECURITY] Fedora 38 Update: R-jsonlite-1.8.5-2.fc38

A reasonably fast JSON parser and generator, optimized for statistical data a nd the web. Offers simple, flexible tools for working with JSON in R, and is particularly powerful for building pipelines and interacting with a web API. The implementation is based on the mapping described in the...

Denial Of Service (DoS)

spray-json is vulnerable to denial of service. The vulnerability exists due to the uncontrolled recursion used in the JsonParser in the parseJsValue function of JsonParser.scala, allowing an attacker to crash the application by providing a deeply nested JSON object...