Search CVE reports
1 – 3 of 3 results
CVE-2022-31117
Medium prioritySome fixes available 4 of 23
UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. In versions prior to 5.4.0 an error occurring while reallocating a buffer for string decoding can cause the buffer to get freed twice....
3 affected packages
collada2gltf, pandas, ujson
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
collada2gltf | Not in release | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
pandas | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
ujson | Not affected | Fixed | Fixed | Fixed | Fixed |
CVE-2022-31116
Medium prioritySome fixes available 4 of 22
UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Affected versions were found to improperly decode certain characters. JSON strings that contain escaped surrogate characters not part of...
3 affected packages
collada2gltf, pandas, ujson
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
collada2gltf | Not in release | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
pandas | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
ujson | Not affected | Fixed | Fixed | Fixed | Fixed |
CVE-2022-24795
Medium prioritySome fixes available 6 of 93
yajl-ruby is a C binding to the YAJL JSON parsing and generation library. The 1.x branch and the 2.x branch of `yajl` contain an integer overflow which leads to subsequent heap memory corruption when dealing with large (~2GB)...
12 affected packages
argyll, burp, centreon-broker, collada2gltf, icinga2...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
argyll | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
burp | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
centreon-broker | — | — | — | — | Ignored |
collada2gltf | Not in release | Needs evaluation | — | Needs evaluation | Needs evaluation |
icinga2 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
libbson | — | — | — | Needs evaluation | Needs evaluation |
lnav | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
php-mongodb | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
r-cran-jsonlite | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
ruby-yajl | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
tulip | Not in release | Needs evaluation | — | — | Needs evaluation |
yajl | Not affected | Fixed | Fixed | Fixed | Fixed |