Jump to:

Jump to:

Package yajl updated to version 2.1.0-alt3 for branch sisyphus in task 322972.

Published: 2023-06-06
Modified: 2025-01-08

CVE-2023-33460

There's a memory leak in yajl 2.1.0 with use of yajl_tree_parse function. which will cause out-of-memory in server and cause crash.

Severity: MEDIUM (6.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References:

Version: 2.1.2

Package yajl update in sisyphus on 2023-06-14