Candidate: CVE-2020-36066
PublicDate: 2021-01-05 21:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36066
 https://github.com/tidwall/gjson/issues/195
 https://github.com/tidwall/match/commit/c2f534168b739a7ec1821a33839fb2f029f26bbc
Description:
 GJSON <1.6.5 allows attackers to cause a denial of service (remote) via
 crafted JSON.
Ubuntu-Description:
Notes:
Mitigation:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH]


Patches_golang-github-tidwall-gjson:
upstream_golang-github-tidwall-gjson: needs-triage
precise/esm_golang-github-tidwall-gjson: DNE
trusty_golang-github-tidwall-gjson: ignored (out of standard support)
trusty/esm_golang-github-tidwall-gjson: DNE
xenial_golang-github-tidwall-gjson: DNE
bionic_golang-github-tidwall-gjson: DNE
focal_golang-github-tidwall-gjson: needs-triage
groovy_golang-github-tidwall-gjson: ignored (reached end-of-life)
hirsute_golang-github-tidwall-gjson: ignored (reached end-of-life)
impish_golang-github-tidwall-gjson: needs-triage
jammy_golang-github-tidwall-gjson: needs-triage
devel_golang-github-tidwall-gjson: needs-triage