Unrated severityNVD Advisory· Published Apr 22, 2014· Updated Jun 17, 2026
CVE-2013-6371
CVE-2013-6371
Description
The hash functionality in json-c before 0.12 allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted JSON data, involving collisions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*
- osv-coords2 versionspkg:rpm/opensuse/json-c&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/rsyslog&distro=openSUSE%20Tumbleweed
< 0.12.1-1.3+ 1 more
- (no CPE)range: < 0.12.1-1.3
- (no CPE)range: < 8.23.0-2.1
Patches
Vulnerability mechanics
References
8- github.com/json-c/json-c/commit/64e36901a0614bf64a19bc3396469c66dcd0b015nvdIssue TrackingPatch
- lists.fedoraproject.org/pipermail/package-announce/2014-April/131845.htmlnvdThird Party Advisory
- secunia.com/advisories/57791nvdPermissions RequiredThird Party Advisory
- www.oracle.com/technetwork/topics/security/bulletinoct2015-2511968.htmlnvdThird Party Advisory
- www.securityfocus.com/bid/66715nvdThird Party AdvisoryVDB Entry
- www.mandriva.com/security/advisoriesnvdBroken Link
- bugzilla.redhat.com/show_bug.cginvdIssue Tracking
- exchange.xforce.ibmcloud.com/vulnerabilities/92541nvdVDB Entry
News mentions
0No linked articles in our index yet.