Debian Patches
Status for cjson/1.7.15-1+deb12u3
| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| 0001-add-null-checkings.patch | [PATCH] add NULL checkings (#809) * add NULL checks in cJSON_SetValuestring Fixes #803(CVE-2023-50472) . * add NULL check in cJSON_InsertItemInArray Fixes #802(CVE-2023-50471) . * add tests for NULL checks add tests for NULL checks in cJSON_InsertItemInArray and cJSON_SetValuestring |
Peter Alfred Lee <peterlee@apache.com> | yes | debian upstream | backport, https://github.com/DaveGamble/cJSON/commit/60ff122ef5862d04b39b150541459e7f5e35add8 | |
| 0002-add-null-check-to-cjson-setvaluestring.patch | [PATCH] Add NULL check to cJSON_SetValuestring() If the valuestring passed to cJSON_SetValuestring is NULL, a null pointer dereference will happen. This patch adds the NULL check of valuestring before it is dereferenced. . Fix for CVE-2024-31755. |
Up-wind <lj.upwind@gmail.com> | yes | debian upstream | backport, https://github.com/DaveGamble/cJSON/commit/7e4d5dabe7a9b754c601f214e65b544e67ba9f59 | |
| 0001-allocate-memory-for-the-temporary-buffer.patch | allocate memory for the temporary buffer Allocate memory for the temporary buffer when paring numbers. This fixes CVE-2023-26819 |
PeterAlfredLee <peteralfredlee@gmail.com> | no | 2025-04-21 | ||
| 0002-Fix-heap-buffer-overflow.patch | Fix heap buffer overflow Fixes #800 |
orri <orri@systemb.is> | no | 2024-04-30 |
All known versions for source package 'cjson'
- 1.7.18-3.1 (forky, sid, trixie)
- 1.7.15-1+deb12u3 (bookworm)