CVE-2023-53154

Опубликовано: 23 мая 2025

Источник: ubuntu

Приоритет: medium

CVSS3: 2.9

Описание

parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing newline if cJSON_ParseWithLength is called.

Релиз	Статус	Примечание
devel	not-affected	1.7.19-2
esm-apps/focal	released	1.7.10-1.1ubuntu0.1~esm1
esm-apps/jammy	released	1.7.15-1ubuntu0.1
esm-apps/noble	released	1.7.17-1ubuntu0.1~esm3
focal	ignored	end of standard support, was needs-triage
jammy	released	1.7.15-1ubuntu0.1
noble	needed
oracular	not-affected	1.7.18-3
plucky	not-affected	1.7.18-3
questing	not-affected	1.7.18-3.1

Показывать по

2.9 Low

CVSS3

CVE-2023-53154

CVSS3: 5.1

redhat

9 месяцев назад

parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing newline if cJSON_ParseWithLength is called.

CVE-2023-53154

CVSS3: 2.9

nvd

9 месяцев назад

parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing newline if cJSON_ParseWithLength is called.

CVE-2023-53154

CVSS3: 2.9

msrc

5 месяцев назад

parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing newline if cJSON_ParseWithLength is called.

CVE-2023-53154

CVSS3: 2.9

debian

9 месяцев назад

parse_string in cJSON before 1.7.18 has a heap-based buffer over-read ...

GHSA-8h4w-44qv-79mq

CVSS3: 2.9

github

9 месяцев назад

parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing newline if cJSON_ParseWithLength is called.

2.9 Low

CVSS3