INFSA-2023:6431: libfastjson security update
Information about definition
Identificator: INFSA-2023:6431
Type: security
Release date: 2025-03-05 17:31:57 UTC
Information about package
The libfastjson library provides essential JavaScript Object Notation (JSON) handling functions. The library enables users to construct JSON objects in C, output them as JSON-formatted strings, and convert JSON-formatted strings back to the C representation of JSON objects.
Vulnerabilities description
- CVE-2020-12762
json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbuf_memappend.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2020-12762
|
no information | 7.8 | no information |
Updated packages