jansson

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description C library for encoding, decoding and manipulating JSON data
Version 2.14-4 [core]

Resolved

Group Affected Fixed Severity Status Ticket
AVG-19 2.7-1 2.8-1 Medium Fixed
Issue Group Severity Remote Type Description
CVE-2016-4425 AVG-19 Medium Yes Denial of service
Jansson 2.7 and earlier allows context-dependent attackers to cause a denial of service (deep recursion, stack consumption, and crash) via crafted JSON data.

Advisories

Date Advisory Group Severity Type
20 Sep 2016 ASA-201609-15 AVG-19 Medium denial of service