| Release | Version |
|---|---|
| bullseye | 1.7.14-1 |
| bookworm | 1.7.15-1+deb12u1 |
| trixie | 1.7.18-3 |
| sid | 1.7.18-3 |
| Bug | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|
| CVE-2024-31755 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | cJSON v1.7.17 was discovered to contain a segmentation violation, whic ... |
| CVE-2023-50471 | vulnerable (no DSA) | fixed | fixed | fixed | cJSON v1.7.16 was discovered to contain a segmentation violation via t ... |
| Bug | bullseye | bookworm | trixie | sid | Description |
|---|---|---|---|---|---|
| CVE-2023-50472 | vulnerable | fixed | fixed | fixed | cJSON v1.7.16 was discovered to contain a segmentation violation via t ... |
| Bug | Description |
|---|---|
| CVE-2019-1010239 | DaveGamble/cJSON cJSON 1.7.8 is affected by: Improper Check for Unusua ... |
| CVE-2019-11835 | cJSON before 1.7.11 allows out-of-bounds access, related to multiline ... |
| CVE-2019-11834 | cJSON before 1.7.11 allows out-of-bounds access, related to \x00 in a ... |
| CVE-2018-1000217 | Dave Gamble cJSON version 1.7.3 and earlier contains a CWE-416: Use Af ... |
| CVE-2018-1000216 | Dave Gamble cJSON version 1.7.2 and earlier contains a CWE-415: Double ... |
| CVE-2018-1000215 | Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnera ... |
| CVE-2016-10749 | parse_string in cJSON.c in cJSON before 2016-10-02 has a buffer over-r ... |
| DSA / DLA | Description |
|---|---|
| DLA-3700-1 | cjson - security update |