CVE-2025-40928

Опубликовано: 08 сент. 2025

Источник: debian

Описание

JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
libjson-xs-perl	fixed	4.030-3		package

Примечания

https://lists.security.metacpan.org/cve-announce/msg/32608909/
https://security.metacpan.org/patches/J/JSON-XS/4.03/CVE-2025-40928-r1.patch

Связанные уязвимости

CVE-2025-40928

CVSS3: 7.5

ubuntu

2 месяца назад

JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact

CVE-2025-40928

CVSS3: 7.5

redhat

2 месяца назад

JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact

CVE-2025-40928

CVSS3: 7.5

nvd

2 месяца назад

JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact

CVE-2025-40928

msrc

около 2 месяцев назад

JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact

ROS-20251014-07

CVSS3: 7.5

redos

25 дней назад

Уязвимость perl-JSON-XS