cJSON

pool/cJSON

SHA256

Fork 2

Commit Graph

Author	SHA256	Message	Date
Martin Hauke	db47cf2b8f	Add bug references for fixed CVEs OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/cJSON?expand=0&rev=19	2025-09-29 19:18:26 +00:00
Martin Hauke	5248c5c046	Accepting request 1306189 from home:mnhauke - Update to version 1.7.19 * Check for NULL in cJSON_DetachItemViaPointer. * Check overlap before calling strcpy in cJSON_SetValuestring. * Fix Max recursion depth for cJSON_Duplicate to prevent stack exhaustion. * Allocate memory for the temporary buffer when paring numbers. This fixes CVE-2023-26819. * Fix the incorrect check in decode_array_index_from_pointer. This fixes CVE-2025-57052 - Remove not longer needed patch: * cJSON-1.7.18-misc_tests.patch OBS-URL: https://build.opensuse.org/request/show/1306189 OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/cJSON?expand=0&rev=17	2025-09-22 09:11:52 +00:00

Author

SHA256

Message

Date

Martin Hauke

db47cf2b8f

Add bug references for fixed CVEs

OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/cJSON?expand=0&rev=19

2025-09-29 19:18:26 +00:00

Martin Hauke

5248c5c046

Accepting request 1306189 from home:mnhauke

- Update to version 1.7.19
  * Check for NULL in cJSON_DetachItemViaPointer.
  * Check overlap before calling strcpy in cJSON_SetValuestring.
  * Fix Max recursion depth for cJSON_Duplicate to prevent stack
    exhaustion.
  * Allocate memory for the temporary buffer when paring numbers.
    This fixes CVE-2023-26819.
  * Fix the incorrect check in decode_array_index_from_pointer.
    This fixes CVE-2025-57052
- Remove not longer needed patch:
  * cJSON-1.7.18-misc_tests.patch

OBS-URL: https://build.opensuse.org/request/show/1306189
OBS-URL: https://build.opensuse.org/package/show/devel:libraries:c_c++/cJSON?expand=0&rev=17

2025-09-22 09:11:52 +00:00

2 Commits