5 matches found
MiracleLinux 9 : yajl-2.1.0-22.el9 (AXSA:2023-6753:01)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6753:01 advisory. yajl: Memory leak in yajltreeparse function CVE-2023-33460 Tenable has extracted the preceding description block directly from the MiracleLinux security...
Oracle Linux 8 : yajl (ELSA-2023-7057)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-7057 advisory. - fix CVE-2023-33460 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for...
Amazon Linux 2023 : yajl, yajl-devel (ALAS2023-2023-279)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-279 advisory. There's a memory leak in yajl 2.1.0 with use of yajltreeparse function. which will cause out-of-memory in server and cause crash. CVE-2023-33460 Tenable has extracted the preceding description block...
Amazon Linux 2023 : yajl, yajl-devel (ALAS2023-2023-263)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-263 advisory. yajl-ruby is a C binding to the YAJL JSON parsing and generation library. The 1.x branch and the 2.x branch of yajl contain an integer overflow which leads to subsequent heap memory corruption when...
Amazon Linux 2023 : yajl, yajl-devel (ALAS2023-2023-214)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-214 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks ...