CVE-2023-53154

NameCVE-2023-53154
Descriptionparse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing newline if cJSON_ParseWithLength is called.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
cjson (PTS)bullseye1.7.14-1+deb11u1vulnerable
bookworm1.7.15-1+deb12u2vulnerable
sid, trixie1.7.18-3fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
cjsonsource(unstable)1.7.18-1

Notes

https://github.com/DaveGamble/cJSON/issues/800
https://github.com/DaveGamble/cJSON/pull/852
Fixed by: https://github.com/DaveGamble/cJSON/commit/3ef4e4e730e5efd381be612df41e1ff3f5bb3c32 (v1.7.18)

Search for package or bug name: Reporting problems