Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Fedora 40: FEDORA-2024-5db248f2a0 moderate: cjson segmentation violation

fedora
Calendar Grey September 29, 2024
Dist Fedora Esm H88
Ubuntu releases libxml2 to resolve memory corruption vulnerability and improve features in build 2.9.12.
Update to new upstream version (closes rhbz#2237124)

Summary

cJSON aims to be the dumbest possible parser that you can get your job

done with. It's a single file of C, and a single header file.

Update Information:

Update to new upstream version (closes rhbz#2237124)

Change Log

* Thu Sep 26 2024 Fabian Affolter - 1.7.18-1 - Update to new upstream version (closes rhbz#2237124) - Fix rhbz#2277268, closes rhbz#2277269 * Wed Jul 17 2024 Fedora Release Engineering - 1.7.17-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild

References


[ 1 ] Bug #2277268 - CVE-2024-31755 cjson: segmentation violation trigger through the second parameter of function cJSON_SetValuestring at cJSON.c https://bugzilla.redhat.com/show_bug.cgi?id=2277268

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-5db248f2a0' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Name: cjson
Product: Fedora 40
Version: 1.7.18
Release: 1.fc40
Summary: Ultralightweight JSON parser in ANSI C

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here