Computer Security
[EN] securityvulns.ru no-pyccku


json-c security vulnerabilities
Published:04.05.2014
Source:
SecurityVulns ID:13718
Type:library
Threat Level:
5/10
Description:Buffer overflow, weak hashing algorithm.
Affected:JSONC : json-c 0.11
CVE:CVE-2013-6371 (The hash functionality in json-c before 0.12 allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted JSON data, involving collisions.)
 CVE-2013-6370 (Buffer overflow in the printbuf APIs in json-c before 0.12 allows remote attackers to cause a denial of service via unspecified vectors.)
Original documentdocumentMANDRIVA, [ MDVSA-2014:079 ] json-c (04.05.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod