Alerts This Week
Warning Icon 1 914
Alerts This Week
Warning Icon 1 914

Mageia 9: MGASA-2024-0156 moderate: cJSON segmentation violations

mageia
Calendar Grey April 30, 2024
Dist Mageia Esm H88
Recent modifications in cJSON packages resolve significant segmentation vulnerabilities within Mageia 9. Discover details regarding the newly applied security corrections.
cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_InsertItemInArray at cJSON.c

Summary

cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_InsertItemInArray at cJSON.c. (CVE-2023-50471) cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_SetValuestring at cJSON.c. (CVE-2023-50472)

References

- https://bugs.mageia.org/show_bug.cgi?id=33133

- https://www.cve.org/CVERecord?id=CVE-2023-50471

- https://www.cve.org/CVERecord?id=CVE-2023-50472

Topics%20covered

Topics Covered

security advisory security fix segmentation fault Mageia mageia segmentation violation cJSON

Resolution

SRPMS

- 9/core/cjson-1.7.15-2.1.mga9

Publication date: 30 Apr 2024
URL: https://advisories.mageia.org/MGASA-2024-0156.html
Type: security
CVE: CVE-2023-50471, CVE-2023-50472

Topics%20covered

Topics Covered

security advisory security fix segmentation fault Mageia mageia segmentation violation cJSON

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here