Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 10 of 12 results


CVE-2024-31755

Medium priority

Some fixes available 3 of 4

cJSON v1.7.17 was discovered to contain a segmentation violation, which can trigger through the second parameter of function cJSON_SetValuestring at cJSON.c.

1 affected packages

cjson

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cjson Fixed Fixed Not affected
Show less packages

CVE-2023-50472

Medium priority

Some fixes available 2 of 3

cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_SetValuestring at cJSON.c.

1 affected packages

cjson

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cjson Not affected Fixed Not affected Ignored Ignored
Show less packages

CVE-2023-50471

Medium priority

Some fixes available 2 of 3

cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_InsertItemInArray at cJSON.c.

1 affected packages

cjson

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cjson Not affected Fixed Not affected Ignored Ignored
Show less packages

CVE-2019-1010239

Medium priority
Not affected

DaveGamble/cJSON cJSON 1.7.8 is affected by: Improper Check for Unusual or Exceptional Conditions. The impact is: Null dereference, so attack can cause denial of service. The component is: cJSON_GetObjectItemCaseSensitive()...

1 affected packages

cjson

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cjson Not in release Not in release
Show less packages

CVE-2019-11835

Medium priority
Ignored

cJSON before 1.7.11 allows out-of-bounds access, related to multiline comments.

1 affected packages

cjson

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cjson Not in release Not in release
Show less packages

CVE-2019-11834

Medium priority
Ignored

cJSON before 1.7.11 allows out-of-bounds access, related to \x00 in a string literal.

1 affected packages

cjson

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cjson Not in release Not in release
Show less packages

CVE-2016-10749

Medium priority
Not affected

parse_string in cJSON.c in cJSON before 2016-10-02 has a buffer over-read, as demonstrated by a string that begins with a " character and ends with a \ character.

1 affected packages

cjson

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cjson Not in release Not in release
Show less packages

CVE-2018-1000217

Medium priority

Not in release

Dave Gamble cJSON version 1.7.3 and earlier contains a CWE-416: Use After Free vulnerability in cJSON library that can result in Possible crash, corruption of data or even RCE. This attack appear to be exploitable via Depends on...

1 affected packages

cjson

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cjson Not in release Not in release
Show less packages

CVE-2018-1000216

Medium priority

Not in release

Dave Gamble cJSON version 1.7.2 and earlier contains a CWE-415: Double Free vulnerability in cJSON library that can result in Possible crash or RCE. This attack appear to be exploitable via Attacker must be able to force victim to...

1 affected packages

cjson

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cjson Not in release Not in release
Show less packages

CVE-2018-1000215

Medium priority
Vulnerable

Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnerability in cJSON library that can result in Denial of Service (DoS). This attack appear to be exploitable via If the attacker can force the data to be printed...

1 affected packages

cjson

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
cjson Not affected Vulnerable Vulnerable Not in release Not in release
Show less packages