43 matches found
libfastjson: integer overflow and out-of-bounds write via a large JSON file
A flaw was found in json-c. In printbufmemappend, certain crafted values can overflow the memory allowing an attacker to write past the memory boundary. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...
libfastjson: integer overflow and out-of-bounds write via a large JSON file
A flaw was found in json-c. In printbufmemappend, certain crafted values can overflow the memory allowing an attacker to write past the memory boundary. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...
libfastjson: integer overflow and out-of-bounds write via a large JSON file
A flaw was found in json-c. In printbufmemappend, certain crafted values can overflow the memory allowing an attacker to write past the memory boundary. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...
OESA-2023-1186 libfastjson security update
libfastjson is a fork from json-c, and is currently under development. The aim of this is not to provide a slightly modified clone of json-c. It's aim is to provide: a small library with essential json handling functions, sufficiently good json support not 100% standards compliant, be very fast i...
SUSE CVE-2020-12762
json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend...
json-c security and bug fix update
0.13.1-2 - rebuild 1954436 0.13.1-1 - Fix CVE-2020-12762 out-of-bounds write via a large JSON file - Resolves: rhbz1835626...
CentOS 8 : json-c (CESA-2021:4382)
The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2021:4382 advisory. - json-c: integer overflow and out-of-bounds write via a large JSON file CVE-2020-12762 Note that Nessus has not tested for this issue but has instead relied on...
json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file as demonstrated by printbuf_memappend.
...
Arbitrary Code Execution
json-c is vulnerable to arbitrary code execution. The vulnerability exists through an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend...
Amazon Linux AMI : json-c (ALAS-2020-1381)
The version of json-c installed on the remote host is prior to 0.11-7.8. It is, therefore, affected by a vulnerability as referenced in the ALAS-2020-1381 advisory. json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend...
Medium: json-c
Issue Overview: json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend. CVE-2020-12762 Affected Packages: json-c Issue Correction: Run yum update json-c or yum update --advisory ALAS-2020-1381 to update your system. New...
EulerOS 2.0 SP8 : json-c (EulerOS-SA-2020-1582)
According to the version of the json-c packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend.CVE-2020-12762 Note...
FreeBSD : json-c -- integer overflow and out-of-bounds write via a large JSON file (abc3ef37-95d4-11ea-9004-25fadb81abf4)
Tobias Stockmann reports : I have discovered a way to trigger an out of boundary write while parsing a huge json file through a malicious input source. It can be triggered if an attacker has control over the input stream or if a huge load during filesystem operations can be triggered. C Tenable...
json-c integer overflow and out-of-bounds write vulnerability
json-c is a C implementation of JSON. An integer overflow and out-of-bounds write vulnerability exists in json-c 0.14 and earlier. An attacker can exploit this vulnerability to cause integer overflow and out-of-bounds writes via large JSON files...
CVE-2020-12762
json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend...
AZL-6506 CVE-2020-12762 affecting package json-c for versions less than 0.15-2
json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend...
ALPINE-CVE-2020-12762
json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend...
UBUNTU-CVE-2020-12762
json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend...
CVE-2020-12762
json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend...
CVE-2020-12762
json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbufmemappend...