Jump to:

CVE-2020-36325

Jump to:

CVE-2020-36325

Package jansson updated to version 2.14-alt4 for branch c10f2 in task 363639.

Published: 2021-04-26
Modified: 2024-11-21

CVE-2020-36325

An issue was discovered in Jansson through 2.13.1. Due to a parsing error in json_loads, there's an out-of-bounds read-access bug. NOTE: the vendor reports that this only occurs when a programmer fails to follow the API specification

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

https://github.com/akheron/jansson/issues/548
https://github.com/akheron/jansson/issues/548

Version: 2.1.0

Package jansson update in c10f2 on 2024-12-08

ALT-PU-2024-16500-2

Closed vulnerabilities

CVE-2020-36325