pkg:Debian/cjson

All known vulnerabilities

• CRITICAL9.8CVE-2025-57052cjson - security update
  from 0, < 1.7.14-1+deb11u3
• CRITICAL9.8CVE-2025-57052cjson - security update
  from 0, < 1.7.15-1+deb12u4
• CRITICAL9.8CVE-2025-57052cjson - security update
  from 0, < 1.7.14-1+deb11u3
• CRITICAL9.8cJSON before 1.7.11 allows out-of-bounds access, related to multiline comments.
  from 0, < 1.7.10-1.1
• CRITICAL9.8cJSON before 1.7.11 allows out-of-bounds access, related to \x00 in a string literal.
  from 0, < 1.7.10-1.1
• HIGH7.6cJSON v1.7.17 was discovered to contain a segmentation violation, which can trigger through the second parameter of function cJSON_SetValue…
  from 0, < 1.7.14-1+deb11u1
• HIGH7.5cJSON v1.7.16 was discovered to contain a segmentation violation via the function cJSON_SetValuestring at cJSON.c.
  from 0, < 1.7.14-1+deb11u1
• HIGH7.5cjson - security update
  from 0, < 1.7.10-1.1+deb10u2
• HIGH7.5cjson - security update
  from 0, < 1.7.14-1+deb11u1
• HIGH7.5DaveGamble/cJSON cJSON 1.7.8 is affected by: Improper Check for Unusual or Exceptional Conditions.
  from 0, < 1.7.10-1
• HIGH7.5Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnerability in cJSON library that can result in Denial of Service (DoS).
  from 0, < 1.7.7-1
• MEDIUM5.5parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing newline if cJSON_ParseWithLength is call…
  from 0, < 1.7.14-1+deb11u2
• LOW2.9cjson - security update
  from 0, < 1.7.14-1+deb11u2
• LOW2.9cjson - security update
  from 0, < 1.7.14-1+deb11u2