ALT-PU-2014-1691-1
Closed vulnerabilities
Published: 2014-04-22
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2013-6370
Buffer overflow in the printbuf APIs in json-c before 0.12 allows remote attackers to cause a denial of service via unspecified vectors.
Severity: MEDIUM (5.0)
References:
- FEDORA-2014-5006
- FEDORA-2014-5006
- 57791
- 57791
- MDVSA-2014:079
- MDVSA-2014:079
- http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
- http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
- 66720
- 66720
- https://bugzilla.redhat.com/show_bug.cgi?id=1032322
- https://bugzilla.redhat.com/show_bug.cgi?id=1032322
- jsonc-cve20136370-bo(92540)
- jsonc-cve20136370-bo(92540)
- https://github.com/json-c/json-c/commit/64e36901a0614bf64a19bc3396469c66dcd0b015
- https://github.com/json-c/json-c/commit/64e36901a0614bf64a19bc3396469c66dcd0b015
Published: 2014-04-22
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2013-6371
The hash functionality in json-c before 0.12 allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted JSON data, involving collisions.
Severity: MEDIUM (5.0)
References:
- FEDORA-2014-5006
- FEDORA-2014-5006
- 57791
- 57791
- MDVSA-2014:079
- MDVSA-2014:079
- http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
- http://www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.html
- 66715
- 66715
- https://bugzilla.redhat.com/show_bug.cgi?id=1032311
- https://bugzilla.redhat.com/show_bug.cgi?id=1032311
- jsonc-cve20136371-dos(92541)
- jsonc-cve20136371-dos(92541)
- https://github.com/json-c/json-c/commit/64e36901a0614bf64a19bc3396469c66dcd0b015
- https://github.com/json-c/json-c/commit/64e36901a0614bf64a19bc3396469c66dcd0b015