26 matches found
Astra Linux - уязвимость в yajl
There is a memory leak in yajl 2.1.0 when using the yajltreeparse function. This can lead to out-of-memory issues on the server and cause crashes...
JLSEC-2026-19 There's a memory leak in yajl 2.1.0 with use of yajl_tree_parse function
There's a memory leak in yajl 2.1.0 with use of yajltreeparse function. which will cause out-of-memory in server and cause crash...
CVE-2026-24825
CVE-2026-24825 describes a memory-leak issue in the ydb-platform/ydb stack, linked to the contrib/libs/yajl modules (yail_tree.C). Affected are ydb versions up to 24.4.4.2. The vulnerability is characterized as Missing Release of Memory after Effective Lifetime, with impact described as potential...
EUVD-2023-37623
Malicious code in bioql PyPI...
CLSA-2025-1757962664 yajl: Fix of CVE-2023-33460
CVE-2023-33460: fix memory leak in yajltreeparse function...
ROS-20240606-06
A vulnerability in the yajltreeparse function of the YAJL-ruby JSON library is related to improper memory freeing before deleting the last reference. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service. remotely to cause a denial of service...
yajl: Memory leak in yajl_tree_parse function
A flaw was found in the yajl library, which exists due to a memory leak within the yajltreeparse function. This flaw allows a remote attacker to parse malicious JSON input to cause out-of-memory in the server, causing a crash, resulting in a denial of service attack...
Updated yajl packages fix security vulnerabilities
The updated packages fix security vulnerabilities: In the yajl-ruby gem 1.3.0 for Ruby, when a crafted JSON file is supplied to Yajl::Parser.new.parse, the whole ruby process crashes with a SIGABRT in the yajlstringdecode function in yajlencode.c. This results in the whole ruby process terminatin...
Oracle Linux 9 : yajl (ELSA-2023-6551)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-6551 advisory. - fix CVE-2023-33460 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for...
RHEL 9 : yajl (RHSA-2023:6551)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:6551 advisory. Yet Another JSON Library YAJL is a small event-driven SAX-style JSON parser written in ANSI C, and a small validating JSON generator. Security Fixes:...
Moderate: yajl security update
Yet Another JSON Library YAJL is a small event-driven SAX-style JSON parser written in ANSI C, and a small validating JSON generator. Security Fixes: yajl: Memory leak in yajltreeparse function CVE-2023-33460 For more details about the security issues, including the impact, a CVSS score,...
Memory Leak
libyajl.so is vulnerable to a Memory Leak. The vulnerability is due to the yajltreeparse function in yajltree.c which allows a remote attacker to parse malicious JSON input to cause an out-of-memory error and crash...
Medium: yajl
Issue Overview: There's a memory leak in yajl 2.1.0 with use of yajltreeparse function. which will cause out-of-memory in server and cause crash. CVE-2023-33460 Affected Packages: yajl Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the differen...
CVE-2023-33460
A flaw was found in the yajl library, which exists due to a memory leak within the yajltreeparse function. This flaw allows a remote attacker to parse malicious JSON input to cause out-of-memory in the server, causing a crash, resulting in a denial of service attack...
SUSE CVE-2023-33460
There's a memory leak in yajl 2.1.0 with use of yajltreeparse function. which will cause out-of-memory in server and cause crash...
Debian dla-3478 : libyajl-dev - security update
The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3478 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3478-1 [email protected] https://www.debian.org/lts/security/...
Memory Leak
libyajl.so is vulnerable to Memory Leak. The vulnerability exists because memory is not released properly in the yajlval yajltreeparse function of yajltree.c, which allows an attacker to cause an out-of-memory error resulting in an application crash...
There's a memory leak in yajl 2.1.0 with use of yajl_tree_parse function. which will cause out-of-memory in server and cause crash.
...
AZL-27143 CVE-2023-33460 affecting package yajl for versions less than 2.1.0-19
There's a memory leak in yajl 2.1.0 with use of yajltreeparse function. which will cause out-of-memory in server and cause crash...
CVE-2023-33460
There's a memory leak in yajl 2.1.0 with use of yajltreeparse function. which will cause out-of-memory in server and cause crash...