pkg:Debian/cjson

All known vulnerabilities

• CRITICAL9.8CVE-2025-57052cjson - security update
  from 0, < 1.7.14-1+deb11u3
• CRITICAL9.8CVE-2025-57052cjson - security update
  from 0, < 1.7.15-1+deb12u4
• CRITICAL9.8CVE-2025-57052cjson - security update
  from 0, < 1.7.14-1+deb11u3
• CRITICAL9.8CVE-2019-11835cJSON before 1.7.11 allows out-of-bounds access, related to multiline comments.
  from 0, < 1.7.10-1.1
• CRITICAL9.8CVE-2019-11834cJSON before 1.7.11 allows out-of-bounds access, related to \x00 in a string literal.
  from 0, < 1.7.10-1.1
• HIGH7.6CVE-2024-31755cJSON v1.7.17 was discovered to contain a segmentation violation, which can trigger through the second parameter of function cJSON_SetValue…
  from 0, < 1.7.14-1+deb11u1
• HIGH7.5CVE-2023-50472cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_SetValuestring at cJSON.c.
  from 0, < 1.7.14-1+deb11u1
• HIGH7.5CVE-2023-50471cjson - security update
  from 0, < 1.7.10-1.1+deb10u2
• HIGH7.5CVE-2023-50471cjson - security update
  from 0, < 1.7.14-1+deb11u1
• HIGH7.5CVE-2019-1010239DaveGamble/cJSON cJSON 1.7.8 is affected by: Improper Check for Unusual or Exceptional Conditions.
  from 0, < 1.7.10-1
• HIGH7.5CVE-2018-1000215Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnerability in cJSON library that can result in Denial of Service (DoS).
  from 0, < 1.7.7-1
• MEDIUM5.5CVE-2023-53154parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing newline if cJSON_ParseWithLength is call…
  from 0, < 1.7.14-1+deb11u2
• LOW2.9CVE-2023-26819cjson - security update
  from 0, < 1.7.14-1+deb11u2
• LOW2.9CVE-2023-26819cjson - security update
  from 0, < 1.7.14-1+deb11u2