Search CVE reports

Toggle filters

1 – 2 of 2 results

CVE-2023-33460

Low priority

Some fixes available 6 of 27

There's a memory leak in yajl 2.1.0 with use of yajl_tree_parse function. which will cause out-of-memory in server and cause crash.

3 affected packages

argyll, r-cran-jsonlite, yajl

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
argyll Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
r-cran-jsonlite Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
yajl Not affected Fixed Fixed Fixed Fixed
Show less packages

CVE-2022-24795

Medium priority

Some fixes available 6 of 100

yajl-ruby is a C binding to the YAJL JSON parsing and generation library. The 1.x branch and the 2.x branch of `yajl` contain an integer overflow which leads to subsequent heap memory corruption when dealing with large (~2GB)...

12 affected packages

argyll, burp, centreon-broker, collada2gltf, icinga2...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
argyll Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
burp Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
centreon-broker Ignored
collada2gltf Not in release Needs evaluation Needs evaluation Needs evaluation
icinga2 Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
libbson Needs evaluation Needs evaluation
lnav Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
php-mongodb Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
r-cran-jsonlite Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
ruby-yajl Needs evaluation Needs evaluation Needs evaluation Needs evaluation Needs evaluation
tulip Not in release Needs evaluation Needs evaluation
yajl Not affected Fixed Fixed Fixed Fixed
Show all 12 packages Show less packages