Description
Jansson 2.7 and earlier allows context-dependent attackers to cause a
denial of service (deep recursion, stack consumption, and crash) via
crafted JSON data.
Ubuntu-Description
It was discovered that Jansson incorrectly handled certain JSON files.
An attacker could possibly use this issue to cause a denial of service.
Package
Upstream: | needs-triage
|
Ubuntu 18.04 LTS: | not-affected
(2.9-1)
|
Ubuntu 16.04 ESM: | released
(2.7-3ubuntu0.1)
|
Ubuntu 14.04 ESM: | DNE
(trusty was released [2.5-2ubuntu0.1])
|
Ubuntu 20.04 FIPS Compliant: | not-affected
(2.9-1)
|
Patches:
Updated: 2022-04-13 12:20:33 UTC (commit f411bd370d482ef4385c4e751d121a4055fbc009)