2 matches found
UBUNTU-CVE-2022-31117
UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. In versions prior to 5.4.0 an error occurring while reallocating a buffer for string decoding can cause the buffer to get freed twice. Due to how UltraJSON uses the internal decoder, this double free is...
muffin (>=0.5.3 <=0.5.12) potentially affected by unknown CVE via ujson (=1.34.0)
ujson PYPI version =1.34.0 is affected by a known vulnerability. The following packages have a transitive dependency on ujson and may be impacted: - muffin =0.5.3, =0.5.12 Source cves: unknown CVE Source advisory: OSV:OSV-2021-955...