USN-4360-1: json-c vulnerability
14 May 2020
json-c could be made to execute arbitrary code if it received a specially crafted JSON file.
- json-c - JSON manipulation library
It was discovered that json-c incorrectly handled certain JSON files.
An attacker could possibly use this issue to execute arbitrary code.
The problem can be corrected by updating your system to the following package versions:
In general, a standard system update will make all the necessary changes.
- USN-4360-4: libjson-c2, json-c, libjson0, libjson-c3, libjson-c4