CVE-2019-1010239

Priority
Description
DaveGamble/cJSON cJSON 1.7.8 is affected by: Improper Check for Unusual or
Exceptional Conditions. The impact is: Null dereference, so attack can
cause denial of service. The component is:
cJSON_GetObjectItemCaseSensitive() function. The attack vector is: crafted
json file. The fixed version is: 1.7.9 and later.
Notes
Package
Source: cjson (LP Ubuntu Debian)
Upstream:released (1.7.10-1)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 18.04 LTS (Bionic Beaver):DNE
More Information

Updated: 2020-09-10 06:03:53 UTC (commit 81a23a978c4436cd99e1d040e9e73e9146876281)