[ubuntu/questing-proposed] json-smart 2.5.2-1 (Accepted)
Eduardo Barretto
eduardo.barretto at canonical.com
Fri Jul 4 12:35:55 UTC 2025
json-smart (2.5.2-1) unstable; urgency=medium
* New upstream version 2.5.2:
- Fixes CVE-2024-57699: A security issue was found in Netplex Json-smart
2.5.0 through 2.5.1. When loading a specially crafted JSON input,
containing a large number of ’{’, a stack exhaustion can be trigger,
which could allow an attacker to cause a Denial of Service (DoS). This
issue exists because of an incomplete fix for CVE-2023-1370.
(Closes: #1095839)
* Refreshing patches
Date: 2025-02-16 22:34:48.157773+00:00
Changed-By: Debian Java Maintainers <pkg-java-maintainers at lists.alioth.debian.org>
Signed-By: Graham Inggs <graham.inggs at canonical.com>
https://launchpad.net/ubuntu/+source/json-smart/2.5.2-1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Questing-changes
mailing list