Search CVE reports


Toggle filters

1 – 3 of 3 results


CVE-2022-31117

Medium priority

Some fixes available 4 of 23

UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. In versions prior to 5.4.0 an error occurring while reallocating a buffer for string decoding can cause the buffer to get freed twice....

3 affected packages

collada2gltf, pandas, ujson

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
collada2gltf Not in release Needs evaluation Not in release Needs evaluation Needs evaluation
pandas Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
ujson Not affected Fixed Fixed Fixed Fixed
Show less packages

CVE-2022-31116

Medium priority

Some fixes available 4 of 22

UltraJSON is a fast JSON encoder and decoder written in pure C with bindings for Python 3.7+. Affected versions were found to improperly decode certain characters. JSON strings that contain escaped surrogate characters not part of...

3 affected packages

collada2gltf, pandas, ujson

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
collada2gltf Not in release Needs evaluation Not in release Needs evaluation Needs evaluation
pandas Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
ujson Not affected Fixed Fixed Fixed Fixed
Show less packages

CVE-2022-24795

Medium priority

Some fixes available 6 of 93

yajl-ruby is a C binding to the YAJL JSON parsing and generation library. The 1.x branch and the 2.x branch of `yajl` contain an integer overflow which leads to subsequent heap memory corruption when dealing with large (~2GB)...

12 affected packages

argyll, burp, centreon-broker, collada2gltf, icinga2...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
argyll Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
burp Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
centreon-broker Ignored
collada2gltf Not in release Needs evaluation Needs evaluation Needs evaluation
icinga2 Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
libbson Needs evaluation Needs evaluation
lnav Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
php-mongodb Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
r-cran-jsonlite Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
ruby-yajl Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
tulip Not in release Needs evaluation Needs evaluation
yajl Not affected Fixed Fixed Fixed Fixed
Show all 12 packages Show less packages