Search CVE reports

Toggle filters

1 – 3 of 3 results

CVE-2023-33460

Low priority

Some fixes available 6 of 29

There's a memory leak in yajl 2.1.0 with use of yajl_tree_parse function. which will cause out-of-memory in server and cause crash.

3 affected packages

yajl, argyll, r-cran-jsonlite

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
yajl Not affected Fixed Fixed Fixed
argyll Needs evaluation Needs evaluation Needs evaluation Needs evaluation
r-cran-jsonlite Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show less packages

CVE-2022-24795

Medium priority

Some fixes available 6 of 108

yajl-ruby is a C binding to the YAJL JSON parsing and generation library. The 1.x branch and the 2.x branch of `yajl` contain an integer overflow which leads to subsequent heap memory corruption when dealing with large (~2GB)...

12 affected packages

yajl, argyll, ruby-yajl, tulip, burp...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
yajl Not affected Fixed Fixed Fixed
argyll Needs evaluation Needs evaluation Needs evaluation Needs evaluation
ruby-yajl Needs evaluation Needs evaluation Needs evaluation Needs evaluation
tulip Not in release Needs evaluation
burp Needs evaluation Needs evaluation Needs evaluation Needs evaluation
centreon-broker
collada2gltf Not in release Needs evaluation Needs evaluation
icinga2 Needs evaluation Needs evaluation Needs evaluation Needs evaluation
libbson Needs evaluation
lnav Needs evaluation Needs evaluation Needs evaluation Needs evaluation
php-mongodb Needs evaluation Needs evaluation Needs evaluation Needs evaluation
r-cran-jsonlite Needs evaluation Needs evaluation Needs evaluation Needs evaluation
Show all 12 packages Show less packages

CVE-2017-16516

Low priority

Some fixes available 6 of 18

In the yajl-ruby gem 1.3.0 for Ruby, when a crafted JSON file is supplied to Yajl::Parser.new.parse, the whole ruby process crashes with a SIGABRT in the yajl_string_decode function in yajl_encode.c. This results in the whole ruby...

2 affected packages

ruby-yajl, yajl

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ruby-yajl Not affected Not affected Not affected Not affected
yajl Not affected Fixed Fixed Fixed
Show less packages