CVE-2013-6371

Опубликовано: 22 апр. 2014

Источник: debian

EPSS Низкий

Описание

The hash functionality in json-c before 0.12 allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted JSON data, involving collisions.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
json-c	fixed	0.11-4		package
json-c	no-dsa		wheezy	package
json-c	no-dsa		squeeze	package

Примечания

https://github.com/json-c/json-c/commit/64e36901a0614bf64a19bc3396469c66dcd0b015

EPSS

Процентиль: 56%

0.00346

Низкий

Связанные уязвимости

CVE-2013-6371

ubuntu

больше 11 лет назад

The hash functionality in json-c before 0.12 allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted JSON data, involving collisions.

CVE-2013-6371

redhat

больше 11 лет назад

The hash functionality in json-c before 0.12 allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted JSON data, involving collisions.

CVE-2013-6371

nvd

больше 11 лет назад

The hash functionality in json-c before 0.12 allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted JSON data, involving collisions.

GHSA-qmhf-38fc-rg36

github

больше 3 лет назад

The hash functionality in json-c before 0.12 allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted JSON data, involving collisions.

ELSA-2014-0703

oracle-oval

около 11 лет назад

ELSA-2014-0703: json-c security update (MODERATE)

EPSS

Процентиль: 56%

0.00346

Низкий