libfastjson-0.99.9-5.el9

エラータID: AXSA:2023-6791:01

Release date: 
Wednesday, February 7, 2024 - 14:45
Subject: 
libfastjson-0.99.9-5.el9
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
Moderate
Description: 

The libfastjson library provides essential JavaScript Object Notation (JSON) handling functions. The library enables users to construct JSON objects in C, output them as JSON-formatted strings, and convert JSON-formatted strings back to the C representation of JSON objects.

Security Fix(es):

* json-c, libfastjson: integer overflow and out-of-bounds write via a large JSON file (CVE-2020-12762)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2020-12762
json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbuf_memappend.

Solution: 

Update packages.

CVEs: 
CVE-2020-12762
json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file, as demonstrated by printbuf_memappend.
Additional Info: 

N/A

Download: 

SRPMS
  1. libfastjson-0.99.9-5.el9.src.rpm
    MD5: fa8a4a886c628da3121ad242b400f41a
    SHA-256: 064019ebbf1f6f9ac94851086ccb22ce10aff6033aac672448739de24e9c2526
    Size: 435.67 kB

Asianux Server 9 for x86_64
  1. libfastjson-0.99.9-5.el9.i686.rpm
    MD5: 73344fb1ba686879340e02c992f199e8
    SHA-256: a2fd7c3061361dda35b39a1256f180e2aec94b8160d4b1b99f155a81e9861d55
    Size: 38.21 kB
  2. libfastjson-0.99.9-5.el9.x86_64.rpm
    MD5: 18e6e20ac2483fbeaa9054f6f28e7590
    SHA-256: 00102edd4dbe895e76c9188005c423df4dc620018955874922dcc91402c1b832
    Size: 36.90 kB
  3. libfastjson-devel-0.99.9-5.el9.x86_64.rpm
    MD5: b4fced5c7d5d0328d07df8970c8aa2a8
    SHA-256: 65a2943cdb793ac1ebc100e88f47fec8de07d102b7c68860517e7c3efcecdb5b
    Size: 22.24 kB