UbuntuUpdates.org

Package "rapidjson-dev"

Name: rapidjson-dev

Description:

fast JSON parser/generator for C++ with SAX/DOM style API

Latest version: 1.1.0+dfsg2-7.3ubuntu0.1
Release: oracular (24.10)
Level: security
Repository: universe
Head package: rapidjson
Homepage: https://miloyip.github.io/rapidjson

Links


Download "rapidjson-dev"


Other versions of "rapidjson-dev" in Oracular

Repository Area Version
base universe 1.1.0+dfsg2-7.3
updates universe 1.1.0+dfsg2-7.3ubuntu0.1

Changelog

Version: 1.1.0+dfsg2-7.3ubuntu0.1 2024-11-25 19:06:54 UTC

  rapidjson (1.1.0+dfsg2-7.3ubuntu0.1) oracular-security; urgency=medium

  * SECURITY UPDATE: Integer underflow during JSON exponent parsing
    - debian/patches/CVE-2024-38517.patch: prevent integer underflow when
      parsing exponent.
    - CVE-2024-38517

 -- Octavio Galland <email address hidden> Mon, 25 Nov 2024 09:24:41 -0300

CVE-2024-38517 Tencent RapidJSON is vulnerable to privilege escalation due to an integer underflow in the `GenericReader::ParseNumber()` function of `include/rapidj



About   -   Send Feedback to @ubuntu_updates