Fedora 43 rubygem-json Critical Format String Injection CVE-2026-33210
fedora
March 27, 2026
This new updates backports a fix for a format string injection vulnerability in JSON.parse, which is now assigned as CVE-2026-33210
Summary
This is a implementation of the JSON specification according
to RFC 4627 in Ruby.
You can think of it as a low fat alternative to XML,
if you want to store data to disk or transmit it over
a network rather than use a verbose markup language.
Update Information:
This new updates backports a fix for a format string injection vulnerability in JSON.parse, which is now assigned as CVE-2026-33210
Topics Covered
Change Log
* Fri Mar 20 2026 Mamoru TASAKA
References
Fedora Update Notification
FEDORA-2026-8c07fcde49
2026-03-27 01:16:52.247657+00:00
Name : rubygem-json
Product : Fedora 43
Version : 2.13.2
Release : 2.fc43
URL : https://github.com/ruby/json
Summary : A JSON implementation in Ruby
Description :
This is a implementation of the JSON specification according
to RFC 4627 in Ruby.
You can think of it as a low fat alternative to XML,
if you want to store data to disk or transmit it over
a network rather than use a verbose markup language.
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-8c07fcde49' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Name: rubygem-json
Product: Fedora 43
Version: 2.13.2
Release: 2.fc43
Summary: A JSON implementation in Ruby
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!