VYPR

rpm package

suse/cJSON&distro=SUSE Linux Enterprise Workstation Extension 15 SP7

pkg:rpm/suse/cJSON&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP7

Vulnerabilities (2)

  • CVE-2025-57052Sep 3, 2025
    affected < 1.7.19-150700.3.3.1fixed 1.7.19-150700.3.3.1

    cJSON 1.5.0 through 1.7.18 allows out-of-bounds access via the decode_array_index_from_pointer function in cJSON_Utils.c, allowing remote attackers to bypass array bounds checking and access restricted data via malformed JSON pointer strings containing alphanumeric characters.

  • CVE-2023-26819Apr 19, 2025
    affected < 1.7.19-150700.3.3.1fixed 1.7.19-150700.3.3.1

    cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}.