CVE-2024-31755

Name

CVE-2024-31755

Description

cJSON v1.7.17 was discovered to contain a segmentation violation, which can trigger through the second parameter of function cJSON_SetValuestring at cJSON.c.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

References

Type	URI
cve@mitre.org	https://github.com/DaveGamble/cJSON/issues/839

Match rules

CPE URI	Source package	Min version	Max version
	n/a	== n/a	== n/a
`cpe:2.3:a:cjson_project:cjson:1.7.17:::::::*`	cjson	== None	== 1.7.17

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
cjson	edge-main	1.7.17-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable
cjson	3.22-main	1.7.17-r0	None	possibly vulnerable
cjson	3.21-main	1.7.17-r0	None	possibly vulnerable
cjson	3.20-main	1.7.17-r0	None	possibly vulnerable
cjson	3.19-main	1.7.17-r0	Jakub Jirutka <jakub@jirutka.cz>	possibly vulnerable