Fedora: Security Advisory (FEDORA-2024-2a0f7e9e97)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 41 : yyjson (2024-2a0f7e9e97)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-2a0f7e9e97 advisory. Automatic update for yyjson-0.9.0-1.fc41. Changelog Tue Apr 9 2024 topazus - 0.9.0-1 - Update to 0.9.0; fix rhbz2274045 and rhbz2266791 Tenable has extracted...

Fedora: Security Advisory (FEDORA-2024-8c48a81cb9)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for yyjson (FEDORA-2024-4691d60717)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2024-ef2e551fab)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 40 : yyjson (2024-8c48a81cb9)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-8c48a81cb9 advisory. Update to 0.9.0; fix rhbz2274045 and rhbz2266791; Security fix for CVE-2024-25713 Tenable has extracted the preceding description block directly from the...

[SECURITY] Fedora 40 Update: yyjson-0.9.0-1.fc40

A high performance JSON library written in ANSI C. Features - Fast: can read or write gigabytes per second JSON data on modern CPUs. - Portable: complies with ANSI C C89 for cross-platform compatibility. - Strict: complies with RFC 8259 JSON standard, ensuring strict number format and UTF-8...

Fedora 39 : yyjson (2024-ef2e551fab)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-ef2e551fab advisory. Update to 0.9.0; fix rhbz2274045 and rhbz2266791; Security fix for CVE-2024-25713 Tenable has extracted the preceding description block directly from the...

Fedora 38 : yyjson (2024-4691d60717)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-4691d60717 advisory. Update to 0.9.0; fix rhbz2274045 and rhbz2266791; Security fix for CVE-2024-25713 Tenable has extracted the preceding description block directly from the...

yyjson has a Double Free vulnerability

Summary The pool series allocator poolmalloc/poolfree/poolrealloc by yysjon has a Double Free vulnerability, which may lead to arbitrary address writing and Denial of Service DoS attacks. Arbitrary address writing, combined with other legitimate or illegitimate operations of programs using this...

CVE-2024-25713

yyjson through 0.8.0 has a double free, leading to remote code execution in some cases, because the poolfree function lacks loop checks. poolfree is part of the pool series allocator, along with poolmalloc and poolrealloc...

CVE-2024-25713

yyjson through 0.8.0 has a double free, leading to remote code execution in some cases, because the poolfree function lacks loop checks. poolfree is part of the pool series allocator, along with poolmalloc and poolrealloc...

Double free

yyjson through 0.8.0 has a double free, leading to remote code execution in some cases, because the poolfree function lacks loop checks. poolfree is part of the pool series allocator, along with poolmalloc and poolrealloc...

yyjson Security Vulnerabilities

yyjson is a JSON library by ibireme individual developers. A security vulnerability exists in yyjson 0.8.0 and earlier versions, which stems from a lack of loop checking in the poolfree function, resulting in a remote code execution vulnerability...

yyjson has a Double Free vulnerability

The pool series allocator poolmalloc/poolfree/poolrealloc by yysjon has a Double Free vulnerability, which may lead to arbitrary address writing and Denial of Service DoS attacks. Arbitrary address writing, combined with other legitimate or illegitimate operations of programs using this library,...

Double Free

Overview ibireme/yyjson is a C JSON library binding Affected versions of this package are vulnerable to Double Free due to improper loop checks in the poolfree function, which is part of the pool series allocator alongside poolmalloc and poolrealloc. An attacker can execute arbitrary code remotel...

Double Free

Overview Affected versions of this package are vulnerable to Double Free due to improper loop checks in the poolfree function, which is part of the pool series allocator alongside poolmalloc and poolrealloc. An attacker can execute arbitrary code remotely by exploiting this flaw. PoC c include...

CVE-2024-25713

yyjson through 0.8.0 has a double free, leading to remote code execution in some cases, because the poolfree function lacks loop checks. poolfree is part of the pool series allocator, along with poolmalloc and poolrealloc...

CVE-2024-25713

CVE-2024-25713 affects the yyjson library; the issue is described as a double free in the pool allocator (pool_free) that can lead to remote code execution in some cases. Public advisories (Fedora releases and Fedora/Nessus plugins) indicate a fix in yyjson 0.9.0, addressing CVE-2024-25713, with ...

CVE-2024-25713

yyjson through 0.8.0 has a double free, leading to remote code execution in some cases, because the poolfree function lacks loop checks. poolfree is part of the pool series allocator, along with poolmalloc and poolrealloc...