CVE-2020-10675

Опубликовано: 19 мар. 2020

Источник: debian

EPSS Низкий

Описание

The Library API in buger jsonparser through 2019-12-04 allows attackers to cause a denial of service (infinite loop) via a Delete call.

Пакет	Статус	Версия исправления	Релиз	Тип
golang-github-buger-jsonparser	fixed	0.0~git20200322.0.f7e751e-1		package
golang-github-buger-jsonparser	postponed		buster	package

https://github.com/buger/jsonparser/issues/188
https://github.com/buger/jsonparser/commit/91ac96899e492584984ded0c8f9a08f10b473717

EPSS

Процентиль: 51%

0.00275

Низкий

CVE-2020-10675

CVSS3: 7.5

ubuntu

почти 6 лет назад

The Library API in buger jsonparser through 2019-12-04 allows attackers to cause a denial of service (infinite loop) via a Delete call.

CVE-2020-10675

CVSS3: 7.5

redhat

почти 6 лет назад

The Library API in buger jsonparser through 2019-12-04 allows attackers to cause a denial of service (infinite loop) via a Delete call.

CVE-2020-10675

CVSS3: 7.5

nvd

почти 6 лет назад

The Library API in buger jsonparser through 2019-12-04 allows attackers to cause a denial of service (infinite loop) via a Delete call.

GHSA-rmh2-65xw-9m6q

CVSS3: 7.5

github

больше 4 лет назад

Infinite Loop in jsonparser

EPSS

Процентиль: 51%

0.00275

Низкий