Описание
Improper Restriction of Operations within the Bounds of a Memory Buffer in python-cjson
Buffer overflow in Dan Pascu python-cjson 1.0.5, when UCS-4 encoding is enabled, allows context-dependent attackers to cause a denial of service (application crash) or possibly have unspecified other impact via vectors involving crafted Unicode input to the cjson.encode function.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2010-1666
- https://github.com/AGProjects/python-cjson/commit/dc2b8781b8666de5ca707318521f554904fdd690
- https://bugs.launchpad.net/ubuntu/+source/python-cjson/+bug/585274
- https://github.com/pypa/advisory-database/tree/main/vulns/python-cjson/PYSEC-2010-30.yaml
- http://www.debian.org/security/2010/dsa-2068
Пакеты
python-cjson
<= 1.0.5
1.0.5.1
Связанные уязвимости
Buffer overflow in Dan Pascu python-cjson 1.0.5, when UCS-4 encoding is enabled, allows context-dependent attackers to cause a denial of service (application crash) or possibly have unspecified other impact via vectors involving crafted Unicode input to the cjson.encode function.
Buffer overflow in Dan Pascu python-cjson 1.0.5, when UCS-4 encoding is enabled, allows context-dependent attackers to cause a denial of service (application crash) or possibly have unspecified other impact via vectors involving crafted Unicode input to the cjson.encode function.
Buffer overflow in Dan Pascu python-cjson 1.0.5, when UCS-4 encoding i ...