Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
openSUSE:Backports:SLE-15-SP5:Update
patchinfo.18387
_patchinfo
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File _patchinfo of Package patchinfo.18387
<patchinfo incident="18387"> <issue tracker="cve" id="2024-31755"/> <issue tracker="cve" id="2023-50471"/> <issue tracker="cve" id="2023-50472"/> <issue tracker="bnc" id="1218099">VUL-0: CVE-2023-50471: cjson: segmentation violation in function cJSON_InsertItemInArray</issue> <issue tracker="bnc" id="1223420">VUL-0: CVE-2024-31755: cJSON: NULL pointer dereference via cJSON_SetValuestring()</issue> <issue tracker="bnc" id="1218098">VUL-0: CVE-2023-50472: cjson: segmentation violation in function cJSON_SetValuestring</issue> <packager>AndreasStieger</packager> <rating>important</rating> <category>security</category> <summary>Security update for cJSON</summary> <description>This update for cJSON fixes the following issues: - Update to 1.7.18: * CVE-2024-31755: NULL pointer dereference via cJSON_SetValuestring() (boo#1223420) * Remove non-functional list handling of compiler flags * Fix heap buffer overflow * remove misused optimization flag -01 * Set free'd pointers to NULL whenever they are not reassigned immediately after - Update to version 1.7.17 (boo#1218098, CVE-2023-50472, boo#1218099, CVE-2023-50471): * Fix null reference in cJSON_SetValuestring (CVE-2023-50472). * Fix null reference in cJSON_InsertItemInArray (CVE-2023-50471). - Update to 1.7.16: * Add an option for ENABLE_CJSON_VERSION_SO in CMakeLists.txt * Add cmake_policy to CMakeLists.txt * Add cJSON_SetBoolValue * Add meson documentation * Fix memory leak in merge_patch * Fix conflicting target names 'uninstall' * Bump cmake version to 3.0 and use new version syntax * Print int without decimal places * Fix 'cjson_utils-static' target not exist * Add allocate check for replace_item_in_object * Fix a null pointer crash in cJSON_ReplaceItemViaPointer </description> </patchinfo>
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor