Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 538
Alerts This Week
Warning Icon 1 538

Fedora 39: FEDORA-2024-74563262c0 Critical: cJSON Segmentation Fault

fedora
Calendar Grey April 23, 2024
Dist Fedora Esm H88
CentOS System Alert: The cJSON library has been updated to version 1.7.17, bringing vital improvements to security and system performance with enhanced patches.
Update to latest upstream version 1.7.17 (closes rhbz#2255953)

Summary

cJSON aims to be the dumbest possible parser that you can get your job

done with. It's a single file of C, and a single header file.

Update Information:

Update to latest upstream version 1.7.17 (closes rhbz#2255953)

Change Log

* Sun Apr 7 2024 Fabian Affolter - 1.7.17.-1 - Update to latest upstream version 1.7.17 (closes rhbz#2255953) - Fix rhbz#2254647 * Tue Jan 23 2024 Fedora Release Engineering - 1.7.15-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild * Fri Jan 19 2024 Fedora Release Engineering - 1.7.15-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild

References


[ 1 ] Bug #2254647 - TRIAGE CVE-2023-50471 cjson: segmentation violation in function cJSON_InsertItemInArray [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2254647 [ 2 ] Bug #2255953 - cjson-1.7.17 is available https://bugzilla.redhat.com/show_bug.cgi?id=2255953

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-74563262c0' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
critical
Lowest
Low
Medium
High
Critical

Name: cjson
Product: Fedora 39
Version: 1.7.17
Release: 1.fc39
Summary: Ultralightweight JSON parser in ANSI C

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.