Action not permitted
Modal body text goes here.
Modal Title
Modal Body
usn-6233-1
Vulnerability from osv_ubuntu
It was discovered that YAJL was not properly performing bounds checks when decoding a string with escape sequences. If a user or automated system using YAJL were tricked into processing specially crafted input, an attacker could possibly use this issue to cause a denial of service (application abort). (CVE-2017-16516)
It was discovered that YAJL was not properly handling memory allocation when dealing with large inputs, which could lead to heap memory corruption. If a user or automated system using YAJL were tricked into running a specially crafted large input, an attacker could possibly use this issue to cause a denial of service. (CVE-2022-24795)
It was discovered that memory leaks existed in one of the YAJL parsing functions. An attacker could possibly use this issue to cause a denial of service (memory exhaustion). (CVE-2023-33460)
{
"affected": [
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2017-16516",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2022-24795",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2023-33460",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:Pro:14.04:LTS"
}
},
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.0.4-4ubuntu0.1~esm1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.0.4-4ubuntu0.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.0.4-4ubuntu0.1~esm1?arch=source\u0026distro=trusty/esm"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.0.4-4ubuntu0.1~esm1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.0.4-4"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2017-16516",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2022-24795",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2023-33460",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:Pro:16.04:LTS"
}
},
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.1.0-2ubuntu0.16.04.1~esm1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.1.0-2ubuntu0.16.04.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.1.0-2ubuntu0.16.04.1~esm1?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.1.0-2ubuntu0.16.04.1~esm1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.1.0-2"
]
},
{
"database_specific": {
"cves_map": {
"cves": [
{
"id": "CVE-2017-16516",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2022-24795",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
]
},
{
"id": "CVE-2023-33460",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
]
}
],
"ecosystem": "Ubuntu:Pro:18.04:LTS"
}
},
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.1.0-2ubuntu0.18.04.1~esm1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.1.0-2ubuntu0.18.04.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:18.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.1.0-2ubuntu0.18.04.1~esm1?arch=source\u0026distro=esm-infra/bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.1.0-2ubuntu0.18.04.1~esm1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.1.0-2",
"2.1.0-2build1"
]
}
],
"aliases": [],
"details": "It was discovered that YAJL was not properly performing bounds checks when\ndecoding a string with escape sequences. If a user or automated system\nusing YAJL were tricked into processing specially crafted input, an\nattacker could possibly use this issue to cause a denial of service\n(application abort). (CVE-2017-16516)\n\nIt was discovered that YAJL was not properly handling memory allocation\nwhen dealing with large inputs, which could lead to heap memory\ncorruption. If a user or automated system using YAJL were tricked into\nrunning a specially crafted large input, an attacker could possibly use\nthis issue to cause a denial of service. (CVE-2022-24795)\n\nIt was discovered that memory leaks existed in one of the YAJL parsing\nfunctions. An attacker could possibly use this issue to cause a denial of\nservice (memory exhaustion). (CVE-2023-33460)\n",
"id": "USN-6233-1",
"modified": "2026-06-29T10:53:03Z",
"published": "2023-07-18T13:31:52Z",
"references": [
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6233-1"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2017-16516"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-24795"
},
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2023-33460"
}
],
"related": [],
"schema_version": "1.7.0",
"summary": "yajl vulnerabilities",
"upstream": [
"UBUNTU-CVE-2017-16516",
"UBUNTU-CVE-2022-24795",
"UBUNTU-CVE-2023-33460"
]
}
ubuntu-cve-2017-16516
Vulnerability from osv_ubuntu
In the yajl-ruby gem 1.3.0 for Ruby, when a crafted JSON file is supplied to Yajl::Parser.new.parse, the whole ruby process crashes with a SIGABRT in the yajl_string_decode function in yajl_encode.c. This results in the whole ruby process terminating and potentially a denial of service.
{
"affected": [
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.0.4-4ubuntu0.1~esm1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.0.4-4ubuntu0.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.0.4-4ubuntu0.1~esm1?arch=source\u0026distro=trusty/esm"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.0.4-4ubuntu0.1~esm1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.0.4-4"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.1.0-2ubuntu0.16.04.1~esm1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.1.0-2ubuntu0.16.04.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.1.0-2ubuntu0.16.04.1~esm1?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.1.0-2ubuntu0.16.04.1~esm1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.1.0-2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "ruby-yajl",
"binary_version": "1.2.0-3build4"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "ruby-yajl",
"purl": "pkg:deb/ubuntu/ruby-yajl@1.2.0-3build4?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.2.0-3build1",
"1.2.0-3build2",
"1.2.0-3build3",
"1.2.0-3build4"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.1.0-2ubuntu0.18.04.1~esm1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.1.0-2ubuntu0.18.04.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:18.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.1.0-2ubuntu0.18.04.1~esm1?arch=source\u0026distro=esm-infra/bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.1.0-2ubuntu0.18.04.1~esm1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.1.0-2",
"2.1.0-2build1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.1.0-3ubuntu0.20.04.1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.1.0-3ubuntu0.20.04.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.1.0-3ubuntu0.20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.1.0-3ubuntu0.20.04.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.1.0-3"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.1.0-3ubuntu0.22.04.1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.1.0-3ubuntu0.22.04.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.1.0-3ubuntu0.22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.1.0-3ubuntu0.22.04.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.1.0-3",
"2.1.0-3build1",
"2.1.0-3build2"
]
}
],
"aliases": [],
"details": "In the yajl-ruby gem 1.3.0 for Ruby, when a crafted JSON file is supplied to Yajl::Parser.new.parse, the whole ruby process crashes with a SIGABRT in the yajl_string_decode function in yajl_encode.c. This results in the whole ruby process terminating and potentially a denial of service.",
"id": "UBUNTU-CVE-2017-16516",
"modified": "2026-04-22T07:38:23Z",
"published": "2017-11-03T15:29:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2017-16516"
},
{
"type": "REPORT",
"url": "https://rubygems.org/gems/yajl-ruby"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6233-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6233-2"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-16516"
}
],
"related": [
"USN-6233-1",
"USN-6233-2"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2017-16516"
]
}
ubuntu-cve-2022-24795
Vulnerability from osv_ubuntu
yajl-ruby is a C binding to the YAJL JSON parsing and generation library. The 1.x branch and the 2.x branch of yajl contain an integer overflow which leads to subsequent heap memory corruption when dealing with large (~2GB) inputs. The reallocation logic at yajl_buf.c#L64 may result in the need 32bit integer wrapping to 0 when need approaches a value of 0x80000000 (i.e. ~2GB of data), which results in a reallocation of buf->alloc into a small heap chunk. These integers are declared as size_t in the 2.x branch of yajl, which practically prevents the issue from triggering on 64bit platforms, however this does not preclude this issue triggering on 32bit builds on which size_t is a 32bit integer. Subsequent population of this under-allocated heap chunk is based on the original buffer size, leading to heap memory corruption. This vulnerability mostly impacts process availability. Maintainers believe exploitation for arbitrary code execution is unlikely. A patch is available and anticipated to be part of yajl-ruby version 1.4.2. As a workaround, avoid passing large inputs to YAJL.
{
"affected": [
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.0.4-4ubuntu0.1~esm1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.0.4-4ubuntu0.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.0.4-4ubuntu0.1~esm1?arch=source\u0026distro=trusty/esm"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.0.4-4ubuntu0.1~esm1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.0.4-4"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.1.0-2ubuntu0.16.04.1~esm1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.1.0-2ubuntu0.16.04.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.1.0-2ubuntu0.16.04.1~esm1?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.1.0-2ubuntu0.16.04.1~esm1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.1.0-2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "argyll",
"binary_version": "1.8.3+repack-2"
},
{
"binary_name": "argyll-ref",
"binary_version": "1.8.3+repack-2"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "argyll",
"purl": "pkg:deb/ubuntu/argyll@1.8.3+repack-2?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.7.0+repack-4",
"1.8.2+repack-1",
"1.8.3+repack-1",
"1.8.3+repack-2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "burp",
"binary_version": "1.3.48-4.1build1"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "burp",
"purl": "pkg:deb/ubuntu/burp@1.3.48-4.1build1?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.3.48-4.1",
"1.3.48-4.1build1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libcollada2gltfconvert-dev",
"binary_version": "20140924-3"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "collada2gltf",
"purl": "pkg:deb/ubuntu/collada2gltf@20140924-3?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"20140924-3"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "icinga2",
"binary_version": "2.4.1-2ubuntu1"
},
{
"binary_name": "icinga2-bin",
"binary_version": "2.4.1-2ubuntu1"
},
{
"binary_name": "icinga2-classicui",
"binary_version": "2.4.1-2ubuntu1"
},
{
"binary_name": "icinga2-common",
"binary_version": "2.4.1-2ubuntu1"
},
{
"binary_name": "icinga2-ido-mysql",
"binary_version": "2.4.1-2ubuntu1"
},
{
"binary_name": "icinga2-ido-pgsql",
"binary_version": "2.4.1-2ubuntu1"
},
{
"binary_name": "icinga2-studio",
"binary_version": "2.4.1-2ubuntu1"
},
{
"binary_name": "libicinga2",
"binary_version": "2.4.1-2ubuntu1"
},
{
"binary_name": "vim-icinga2",
"binary_version": "2.4.1-2ubuntu1"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "icinga2",
"purl": "pkg:deb/ubuntu/icinga2@2.4.1-2ubuntu1?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.3.8-1build1",
"2.3.11-1",
"2.4.0-1",
"2.4.1-1",
"2.4.1-2",
"2.4.1-2ubuntu1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libbson-1.0-0",
"binary_version": "1.3.1-1ubuntu0.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "libbson",
"purl": "pkg:deb/ubuntu/libbson@1.3.1-1ubuntu0.1~esm1?arch=source\u0026distro=esm-apps/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.3.1-1",
"1.3.1-1ubuntu0.1~esm1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "lnav",
"binary_version": "0.7.0-3build1"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "lnav",
"purl": "pkg:deb/ubuntu/lnav@0.7.0-3build1?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.7.0-3build1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "php-mongodb",
"binary_version": "1.1.5-1~build1"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "php-mongodb",
"purl": "pkg:deb/ubuntu/php-mongodb@1.1.5-1~build1?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.1.2-2~ubuntu1",
"1.1.5-1~build1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "r-cran-jsonlite",
"binary_version": "0.9.19-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "r-cran-jsonlite",
"purl": "pkg:deb/ubuntu/r-cran-jsonlite@0.9.19-1?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.9.19-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "ruby-yajl",
"binary_version": "1.2.0-3build4"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "ruby-yajl",
"purl": "pkg:deb/ubuntu/ruby-yajl@1.2.0-3build4?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.2.0-3build1",
"1.2.0-3build2",
"1.2.0-3build3",
"1.2.0-3build4"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libgzstream-tulip-4.8-0",
"binary_version": "4.8.0dfsg-2build2"
},
{
"binary_name": "libogdf-tulip-4.8-0",
"binary_version": "4.8.0dfsg-2build2"
},
{
"binary_name": "libquazip-tulip-4.8-1",
"binary_version": "4.8.0dfsg-2build2"
},
{
"binary_name": "libqxt-tulip-4.8-0",
"binary_version": "4.8.0dfsg-2build2"
},
{
"binary_name": "libtess2-tulip-4.8",
"binary_version": "4.8.0dfsg-2build2"
},
{
"binary_name": "libtulip-core-4.8",
"binary_version": "4.8.0dfsg-2build2"
},
{
"binary_name": "libtulip-gui-4.8",
"binary_version": "4.8.0dfsg-2build2"
},
{
"binary_name": "libtulip-ogdf-4.8",
"binary_version": "4.8.0dfsg-2build2"
},
{
"binary_name": "libtulip-ogl-4.8",
"binary_version": "4.8.0dfsg-2build2"
},
{
"binary_name": "libtulip-python-4.8",
"binary_version": "4.8.0dfsg-2build2"
},
{
"binary_name": "libyajl-tulip-4.8-2",
"binary_version": "4.8.0dfsg-2build2"
},
{
"binary_name": "tulip",
"binary_version": "4.8.0dfsg-2build2"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "tulip",
"purl": "pkg:deb/ubuntu/tulip@4.8.0dfsg-2build2?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"4.7.0dfsg-1ubuntu1",
"4.7.0dfsg-1ubuntu2",
"4.7.0dfsg-2ubuntu1",
"4.7.0dfsg-2ubuntu2",
"4.8.0dfsg-1",
"4.8.0dfsg-1build1",
"4.8.0dfsg-2",
"4.8.0dfsg-2build1",
"4.8.0dfsg-2build2"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.1.0-2ubuntu0.18.04.1~esm1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.1.0-2ubuntu0.18.04.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:18.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.1.0-2ubuntu0.18.04.1~esm1?arch=source\u0026distro=esm-infra/bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.1.0-2ubuntu0.18.04.1~esm1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.1.0-2",
"2.1.0-2build1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "argyll",
"binary_version": "2.0.0+repack-1build1"
},
{
"binary_name": "argyll-ref",
"binary_version": "2.0.0+repack-1build1"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "argyll",
"purl": "pkg:deb/ubuntu/argyll@2.0.0+repack-1build1?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.9.2+repack-1",
"1.9.2+repack-2",
"2.0.0+repack-1build1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "burp",
"binary_version": "2.0.54-4build1"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "burp",
"purl": "pkg:deb/ubuntu/burp@2.0.54-4build1?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.0.54-1",
"2.0.54-4build1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libcollada2gltfconvert-dev",
"binary_version": "20140924-4"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "collada2gltf",
"purl": "pkg:deb/ubuntu/collada2gltf@20140924-4?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"20140924-4"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "icinga2",
"binary_version": "2.8.1-0ubuntu2"
},
{
"binary_name": "icinga2-bin",
"binary_version": "2.8.1-0ubuntu2"
},
{
"binary_name": "icinga2-classicui",
"binary_version": "2.8.1-0ubuntu2"
},
{
"binary_name": "icinga2-common",
"binary_version": "2.8.1-0ubuntu2"
},
{
"binary_name": "icinga2-ido-mysql",
"binary_version": "2.8.1-0ubuntu2"
},
{
"binary_name": "icinga2-ido-pgsql",
"binary_version": "2.8.1-0ubuntu2"
},
{
"binary_name": "icinga2-studio",
"binary_version": "2.8.1-0ubuntu2"
},
{
"binary_name": "libicinga2",
"binary_version": "2.8.1-0ubuntu2"
},
{
"binary_name": "vim-icinga2",
"binary_version": "2.8.1-0ubuntu2"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "icinga2",
"purl": "pkg:deb/ubuntu/icinga2@2.8.1-0ubuntu2?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.7.0-1",
"2.8.1-0ubuntu2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libbson-1.0-0",
"binary_version": "1.9.2-1ubuntu0.1~esm2"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:18.04:LTS",
"name": "libbson",
"purl": "pkg:deb/ubuntu/libbson@1.9.2-1ubuntu0.1~esm2?arch=source\u0026distro=esm-apps/bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.8.0-1",
"1.8.1-1",
"1.9.0-1",
"1.9.2-1",
"1.9.2-1ubuntu0.1~esm2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "lnav",
"binary_version": "0.8.2-3"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "lnav",
"purl": "pkg:deb/ubuntu/lnav@0.8.2-3?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.8.2-3"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "php-mongodb",
"binary_version": "1.3.4-1build1"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "php-mongodb",
"purl": "pkg:deb/ubuntu/php-mongodb@1.3.4-1build1?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.2.3-1build1",
"1.3.4-1build1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "r-cran-jsonlite",
"binary_version": "1.5-2"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "r-cran-jsonlite",
"purl": "pkg:deb/ubuntu/r-cran-jsonlite@1.5-2?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.2-1build1",
"1.5-2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "ruby-yajl",
"binary_version": "1.3.1-1build1"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "ruby-yajl",
"purl": "pkg:deb/ubuntu/ruby-yajl@1.3.1-1build1?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.2.0-3build4",
"1.2.0-3.1",
"1.3.1-1",
"1.3.1-1build1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.1.0-3ubuntu0.20.04.1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.1.0-3ubuntu0.20.04.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.1.0-3ubuntu0.20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.1.0-3ubuntu0.20.04.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.1.0-3"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "argyll",
"binary_version": "2.0.1+repack-1"
},
{
"binary_name": "argyll-ref",
"binary_version": "2.0.1+repack-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "argyll",
"purl": "pkg:deb/ubuntu/argyll@2.0.1+repack-1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.0.1+repack-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "burp",
"binary_version": "2.2.18-2"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "burp",
"purl": "pkg:deb/ubuntu/burp@2.2.18-2?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.2.18-2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "icinga2",
"binary_version": "2.11.2-1ubuntu3"
},
{
"binary_name": "icinga2-bin",
"binary_version": "2.11.2-1ubuntu3"
},
{
"binary_name": "icinga2-common",
"binary_version": "2.11.2-1ubuntu3"
},
{
"binary_name": "icinga2-ido-mysql",
"binary_version": "2.11.2-1ubuntu3"
},
{
"binary_name": "icinga2-ido-pgsql",
"binary_version": "2.11.2-1ubuntu3"
},
{
"binary_name": "vim-icinga2",
"binary_version": "2.11.2-1ubuntu3"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "icinga2",
"purl": "pkg:deb/ubuntu/icinga2@2.11.2-1ubuntu3?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.10.5-1build1",
"2.11.2-1",
"2.11.2-1ubuntu1",
"2.11.2-1ubuntu2",
"2.11.2-1ubuntu3"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "lnav",
"binary_version": "0.8.5-2build1"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "lnav",
"purl": "pkg:deb/ubuntu/lnav@0.8.5-2build1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.8.4-5build1",
"0.8.5-2",
"0.8.5-2build1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "php-mongodb",
"binary_version": "1.6.1-4build1"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "php-mongodb",
"purl": "pkg:deb/ubuntu/php-mongodb@1.6.1-4build1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.5.5-1build1",
"1.6.1-4",
"1.6.1-4build1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "r-cran-jsonlite",
"binary_version": "1.6.1+dfsg-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "r-cran-jsonlite",
"purl": "pkg:deb/ubuntu/r-cran-jsonlite@1.6.1+dfsg-1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.6+dfsg-1",
"1.6.1+dfsg-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "ruby-yajl",
"binary_version": "1.3.1-1build2"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "ruby-yajl",
"purl": "pkg:deb/ubuntu/ruby-yajl@1.3.1-1build2?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.3.1-1build1",
"1.3.1-1build2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "argyll",
"binary_version": "2.2.0+repack-1build1"
},
{
"binary_name": "argyll-ref",
"binary_version": "2.2.0+repack-1build1"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "argyll",
"purl": "pkg:deb/ubuntu/argyll@2.2.0+repack-1build1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.0.1+repack-2",
"2.2.0+repack-1",
"2.2.0+repack-1build1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "burp",
"binary_version": "2.4.0-3ubuntu1"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "burp",
"purl": "pkg:deb/ubuntu/burp@2.4.0-3ubuntu1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.2.18-8ubuntu2",
"2.4.0-3ubuntu1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libcollada2gltfconvert-dev",
"binary_version": "20140924-8"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "collada2gltf",
"purl": "pkg:deb/ubuntu/collada2gltf@20140924-8?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"20140924-7build1",
"20140924-8"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "icinga2",
"binary_version": "2.13.2-1build2"
},
{
"binary_name": "icinga2-bin",
"binary_version": "2.13.2-1build2"
},
{
"binary_name": "icinga2-common",
"binary_version": "2.13.2-1build2"
},
{
"binary_name": "icinga2-ido-mysql",
"binary_version": "2.13.2-1build2"
},
{
"binary_name": "icinga2-ido-pgsql",
"binary_version": "2.13.2-1build2"
},
{
"binary_name": "vim-icinga2",
"binary_version": "2.13.2-1build2"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "icinga2",
"purl": "pkg:deb/ubuntu/icinga2@2.13.2-1build2?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.12.3-1",
"2.13.1-1",
"2.13.2-1",
"2.13.2-1build1",
"2.13.2-1build2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "lnav",
"binary_version": "0.9.0-2ubuntu1"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "lnav",
"purl": "pkg:deb/ubuntu/lnav@0.9.0-2ubuntu1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.9.0-1",
"0.9.0-2ubuntu1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "php-mongodb",
"binary_version": "1.12.0+1.9.2+1.7.5-4"
},
{
"binary_name": "php8.1-mongodb",
"binary_version": "1.12.0+1.9.2+1.7.5-4"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "php-mongodb",
"purl": "pkg:deb/ubuntu/php-mongodb@1.12.0+1.9.2+1.7.5-4?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.9.0+1.7.5-2build2",
"1.11.1+1.9.2+1.7.5-4",
"1.12.0+1.9.2+1.7.5-3",
"1.12.0+1.9.2+1.7.5-4"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "r-cran-jsonlite",
"binary_version": "1.7.3+dfsg-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "r-cran-jsonlite",
"purl": "pkg:deb/ubuntu/r-cran-jsonlite@1.7.3+dfsg-1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.7.2+dfsg-1",
"1.7.3+dfsg-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "ruby-yajl",
"binary_version": "1.4.1-1build2"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "ruby-yajl",
"purl": "pkg:deb/ubuntu/ruby-yajl@1.4.1-1build2?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.4.1-1",
"1.4.1-1build1",
"1.4.1-1build2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libogdf-tulip-5.4-0",
"binary_version": "5.4.0+dfsg-3build2"
},
{
"binary_name": "libtess2-tulip-5.4",
"binary_version": "5.4.0+dfsg-3build2"
},
{
"binary_name": "libtulip-core-5.4",
"binary_version": "5.4.0+dfsg-3build2"
},
{
"binary_name": "libtulip-gui-5.4",
"binary_version": "5.4.0+dfsg-3build2"
},
{
"binary_name": "libtulip-ogdf-5.4",
"binary_version": "5.4.0+dfsg-3build2"
},
{
"binary_name": "libtulip-ogl-5.4",
"binary_version": "5.4.0+dfsg-3build2"
},
{
"binary_name": "libtulip-python-5.4",
"binary_version": "5.4.0+dfsg-3build2"
},
{
"binary_name": "tulip",
"binary_version": "5.4.0+dfsg-3build2"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "tulip",
"purl": "pkg:deb/ubuntu/tulip@5.4.0+dfsg-3build2?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"5.4.0+dfsg-3",
"5.4.0+dfsg-3build1",
"5.4.0+dfsg-3build2"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.1.0-3ubuntu0.22.04.1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.1.0-3ubuntu0.22.04.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.1.0-3ubuntu0.22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.1.0-3ubuntu0.22.04.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.1.0-3",
"2.1.0-3build1",
"2.1.0-3build2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "argyll",
"binary_version": "3.1.0+repack-1build4"
},
{
"binary_name": "argyll-ref",
"binary_version": "3.1.0+repack-1build4"
}
]
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "argyll",
"purl": "pkg:deb/ubuntu/argyll@3.1.0+repack-1build4?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.3.1+repack-1ubuntu2",
"3.1.0+repack-1",
"3.1.0+repack-1build2",
"3.1.0+repack-1build3",
"3.1.0+repack-1build4"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "burp",
"binary_version": "3.1.4-3.1build3"
}
]
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "burp",
"purl": "pkg:deb/ubuntu/burp@3.1.4-3.1build3?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"3.1.4-1",
"3.1.4-3",
"3.1.4-3ubuntu1",
"3.1.4-3.1",
"3.1.4-3.1build1",
"3.1.4-3.1build2",
"3.1.4-3.1build3"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "icinga2",
"binary_version": "2.14.2-1build2"
},
{
"binary_name": "icinga2-bin",
"binary_version": "2.14.2-1build2"
},
{
"binary_name": "icinga2-common",
"binary_version": "2.14.2-1build2"
},
{
"binary_name": "icinga2-ido-mysql",
"binary_version": "2.14.2-1build2"
},
{
"binary_name": "icinga2-ido-pgsql",
"binary_version": "2.14.2-1build2"
},
{
"binary_name": "vim-icinga2",
"binary_version": "2.14.2-1build2"
}
]
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "icinga2",
"purl": "pkg:deb/ubuntu/icinga2@2.14.2-1build2?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.13.8-1",
"2.14.1-1",
"2.14.2-1",
"2.14.2-1build1",
"2.14.2-1build2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "lnav",
"binary_version": "0.11.2-1build3"
}
]
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "lnav",
"purl": "pkg:deb/ubuntu/lnav@0.11.2-1build3?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.11.2-1",
"0.11.2-1build2",
"0.11.2-1build3"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "php-mongodb",
"binary_version": "1.15.0+1.11.1+1.9.2+1.7.5-1ubuntu3"
},
{
"binary_name": "php8.3-mongodb",
"binary_version": "1.15.0+1.11.1+1.9.2+1.7.5-1ubuntu3"
}
]
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "php-mongodb",
"purl": "pkg:deb/ubuntu/php-mongodb@1.15.0+1.11.1+1.9.2+1.7.5-1ubuntu3?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.15.0+1.11.1+1.9.2+1.7.5-1build1",
"1.15.0+1.11.1+1.9.2+1.7.5-1ubuntu1",
"1.15.0+1.11.1+1.9.2+1.7.5-1ubuntu2",
"1.15.0+1.11.1+1.9.2+1.7.5-1ubuntu3"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "r-cran-jsonlite",
"binary_version": "1.8.8+dfsg-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "r-cran-jsonlite",
"purl": "pkg:deb/ubuntu/r-cran-jsonlite@1.8.8+dfsg-1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.8.5+dfsg-1",
"1.8.7+dfsg-1",
"1.8.8+dfsg-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "ruby-yajl",
"binary_version": "1.4.3-1build4"
}
]
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "ruby-yajl",
"purl": "pkg:deb/ubuntu/ruby-yajl@1.4.3-1build4?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.4.3-1build2",
"1.4.3-1build3",
"1.4.3-1build4"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "argyll",
"binary_version": "3.3.0+repack-1"
},
{
"binary_name": "argyll-ref",
"binary_version": "3.3.0+repack-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "argyll",
"purl": "pkg:deb/ubuntu/argyll@3.3.0+repack-1?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"3.1.0+repack-1.1",
"3.3.0+repack-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "burp",
"binary_version": "3.1.4-4"
}
]
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "burp",
"purl": "pkg:deb/ubuntu/burp@3.1.4-4?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"3.1.4-4"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "icinga2",
"binary_version": "2.15.0-1"
},
{
"binary_name": "icinga2-bin",
"binary_version": "2.15.0-1"
},
{
"binary_name": "icinga2-common",
"binary_version": "2.15.0-1"
},
{
"binary_name": "icinga2-ido-mysql",
"binary_version": "2.15.0-1"
},
{
"binary_name": "icinga2-ido-pgsql",
"binary_version": "2.15.0-1"
},
{
"binary_name": "vim-icinga2",
"binary_version": "2.15.0-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "icinga2",
"purl": "pkg:deb/ubuntu/icinga2@2.15.0-1?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.14.5-1",
"2.14.6-1",
"2.15.0-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "lnav",
"binary_version": "0.12.4-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "lnav",
"purl": "pkg:deb/ubuntu/lnav@0.12.4-1?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.12.3-2",
"0.12.4-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "php-mongodb",
"binary_version": "2.1.0-1"
},
{
"binary_name": "php8.4-mongodb",
"binary_version": "2.1.0-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "php-mongodb",
"purl": "pkg:deb/ubuntu/php-mongodb@2.1.0-1?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.21.0-1",
"2.0.0-1",
"2.1.0-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "r-cran-jsonlite",
"binary_version": "1.9.1+dfsg-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "r-cran-jsonlite",
"purl": "pkg:deb/ubuntu/r-cran-jsonlite@1.9.1+dfsg-1?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.9.1+dfsg-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "ruby-yajl",
"binary_version": "1.4.3-1build5"
}
]
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "ruby-yajl",
"purl": "pkg:deb/ubuntu/ruby-yajl@1.4.3-1build5?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.4.3-1build5"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libogdf-tulip-6.0",
"binary_version": "6.0.1+dfsg-2"
},
{
"binary_name": "libtulip-core-6.0",
"binary_version": "6.0.1+dfsg-2"
},
{
"binary_name": "libtulip-gui-6.0",
"binary_version": "6.0.1+dfsg-2"
},
{
"binary_name": "libtulip-ogl-6.0",
"binary_version": "6.0.1+dfsg-2"
},
{
"binary_name": "libtulip-python-6.0",
"binary_version": "6.0.1+dfsg-2"
},
{
"binary_name": "tulip",
"binary_version": "6.0.1+dfsg-2"
}
]
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "tulip",
"purl": "pkg:deb/ubuntu/tulip@6.0.1+dfsg-2?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.1+dfsg-2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "argyll",
"binary_version": "3.3.0+repack-1.1"
},
{
"binary_name": "argyll-ref",
"binary_version": "3.3.0+repack-1.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "argyll",
"purl": "pkg:deb/ubuntu/argyll@3.3.0+repack-1.1?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"3.3.0+repack-1",
"3.3.0+repack-1.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "burp",
"binary_version": "3.1.4-5"
}
]
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "burp",
"purl": "pkg:deb/ubuntu/burp@3.1.4-5?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"3.1.4-4",
"3.1.4-5"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "icinga2",
"binary_version": "2.15.1-1"
},
{
"binary_name": "icinga2-bin",
"binary_version": "2.15.1-1"
},
{
"binary_name": "icinga2-common",
"binary_version": "2.15.1-1"
},
{
"binary_name": "icinga2-ido-mysql",
"binary_version": "2.15.1-1"
},
{
"binary_name": "icinga2-ido-pgsql",
"binary_version": "2.15.1-1"
},
{
"binary_name": "vim-icinga2",
"binary_version": "2.15.1-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "icinga2",
"purl": "pkg:deb/ubuntu/icinga2@2.15.1-1?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.15.0-1",
"2.15.1-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "lnav",
"binary_version": "0.13.2-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "lnav",
"purl": "pkg:deb/ubuntu/lnav@0.13.2-1?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.12.4-1",
"0.12.4-2",
"0.13.2-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "php-mongodb",
"binary_version": "2.1.7-0ubuntu1"
},
{
"binary_name": "php8.5-mongodb",
"binary_version": "2.1.7-0ubuntu1"
}
]
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "php-mongodb",
"purl": "pkg:deb/ubuntu/php-mongodb@2.1.7-0ubuntu1?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.1.0-1",
"2.1.7-0ubuntu1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "r-cran-jsonlite",
"binary_version": "2.0.0+dfsg-2"
}
]
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "r-cran-jsonlite",
"purl": "pkg:deb/ubuntu/r-cran-jsonlite@2.0.0+dfsg-2?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.9.1+dfsg-1",
"2.0.0+dfsg-2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "ruby-yajl",
"binary_version": "1.4.3-1build5"
}
]
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "ruby-yajl",
"purl": "pkg:deb/ubuntu/ruby-yajl@1.4.3-1build5?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.4.3-1build5"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "libogdf-tulip-6.0",
"binary_version": "6.0.1+dfsg-2ubuntu1"
},
{
"binary_name": "libtulip-core-6.0",
"binary_version": "6.0.1+dfsg-2ubuntu1"
},
{
"binary_name": "libtulip-gui-6.0",
"binary_version": "6.0.1+dfsg-2ubuntu1"
},
{
"binary_name": "libtulip-ogl-6.0",
"binary_version": "6.0.1+dfsg-2ubuntu1"
},
{
"binary_name": "libtulip-python-6.0",
"binary_version": "6.0.1+dfsg-2ubuntu1"
},
{
"binary_name": "tulip",
"binary_version": "6.0.1+dfsg-2ubuntu1"
}
]
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "tulip",
"purl": "pkg:deb/ubuntu/tulip@6.0.1+dfsg-2ubuntu1?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"6.0.1+dfsg-2",
"6.0.1+dfsg-2ubuntu1"
]
}
],
"aliases": [],
"details": "yajl-ruby is a C binding to the YAJL JSON parsing and generation library. The 1.x branch and the 2.x branch of `yajl` contain an integer overflow which leads to subsequent heap memory corruption when dealing with large (~2GB) inputs. The reallocation logic at `yajl_buf.c#L64` may result in the `need` 32bit integer wrapping to 0 when `need` approaches a value of 0x80000000 (i.e. ~2GB of data), which results in a reallocation of buf-\u003ealloc into a small heap chunk. These integers are declared as `size_t` in the 2.x branch of `yajl`, which practically prevents the issue from triggering on 64bit platforms, however this does not preclude this issue triggering on 32bit builds on which `size_t` is a 32bit integer. Subsequent population of this under-allocated heap chunk is based on the original buffer size, leading to heap memory corruption. This vulnerability mostly impacts process availability. Maintainers believe exploitation for arbitrary code execution is unlikely. A patch is available and anticipated to be part of yajl-ruby version 1.4.2. As a workaround, avoid passing large inputs to YAJL.",
"id": "UBUNTU-CVE-2022-24795",
"modified": "2026-05-20T14:55:51Z",
"published": "2022-04-05T16:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2022-24795"
},
{
"type": "REPORT",
"url": "https://github.com/brianmario/yajl-ruby/pull/211"
},
{
"type": "REPORT",
"url": "https://github.com/brianmario/yajl-ruby/security/advisories/GHSA-jj47-x69x-mxrm"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6233-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6233-2"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-24795"
}
],
"related": [
"USN-6233-1",
"USN-6233-2"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "medium",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2022-24795"
]
}
ubuntu-cve-2023-33460
Vulnerability from osv_ubuntu
There's a memory leak in yajl 2.1.0 with use of yajl_tree_parse function. which will cause out-of-memory in server and cause crash.
{
"affected": [
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.0.4-4ubuntu0.1~esm1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.0.4-4ubuntu0.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:14.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.0.4-4ubuntu0.1~esm1?arch=source\u0026distro=trusty/esm"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.0.4-4ubuntu0.1~esm1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.0.4-4"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.1.0-2ubuntu0.16.04.1~esm1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.1.0-2ubuntu0.16.04.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:16.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.1.0-2ubuntu0.16.04.1~esm1?arch=source\u0026distro=esm-infra/xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.1.0-2ubuntu0.16.04.1~esm1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.1.0-2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "argyll",
"binary_version": "1.8.3+repack-2"
},
{
"binary_name": "argyll-ref",
"binary_version": "1.8.3+repack-2"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "argyll",
"purl": "pkg:deb/ubuntu/argyll@1.8.3+repack-2?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.7.0+repack-4",
"1.8.2+repack-1",
"1.8.3+repack-1",
"1.8.3+repack-2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "r-cran-jsonlite",
"binary_version": "0.9.19-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:16.04:LTS",
"name": "r-cran-jsonlite",
"purl": "pkg:deb/ubuntu/r-cran-jsonlite@0.9.19-1?arch=source\u0026distro=xenial"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.9.19-1"
]
},
{
"ecosystem_specific": {
"availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.1.0-2ubuntu0.18.04.1~esm1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.1.0-2ubuntu0.18.04.1~esm1"
}
]
},
"package": {
"ecosystem": "Ubuntu:Pro:18.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.1.0-2ubuntu0.18.04.1~esm1?arch=source\u0026distro=esm-infra/bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.1.0-2ubuntu0.18.04.1~esm1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.1.0-2",
"2.1.0-2build1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "argyll",
"binary_version": "2.0.0+repack-1build1"
},
{
"binary_name": "argyll-ref",
"binary_version": "2.0.0+repack-1build1"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "argyll",
"purl": "pkg:deb/ubuntu/argyll@2.0.0+repack-1build1?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.9.2+repack-1",
"1.9.2+repack-2",
"2.0.0+repack-1build1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "r-cran-jsonlite",
"binary_version": "1.5-2"
}
]
},
"package": {
"ecosystem": "Ubuntu:18.04:LTS",
"name": "r-cran-jsonlite",
"purl": "pkg:deb/ubuntu/r-cran-jsonlite@1.5-2?arch=source\u0026distro=bionic"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.2-1build1",
"1.5-2"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.1.0-3ubuntu0.20.04.1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.1.0-3ubuntu0.20.04.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.1.0-3ubuntu0.20.04.1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.1.0-3ubuntu0.20.04.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.1.0-3"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "argyll",
"binary_version": "2.0.1+repack-1"
},
{
"binary_name": "argyll-ref",
"binary_version": "2.0.1+repack-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "argyll",
"purl": "pkg:deb/ubuntu/argyll@2.0.1+repack-1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.0.1+repack-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "r-cran-jsonlite",
"binary_version": "1.6.1+dfsg-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:20.04:LTS",
"name": "r-cran-jsonlite",
"purl": "pkg:deb/ubuntu/r-cran-jsonlite@1.6.1+dfsg-1?arch=source\u0026distro=focal"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.6+dfsg-1",
"1.6.1+dfsg-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "argyll",
"binary_version": "2.2.0+repack-1build1"
},
{
"binary_name": "argyll-ref",
"binary_version": "2.2.0+repack-1build1"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "argyll",
"purl": "pkg:deb/ubuntu/argyll@2.2.0+repack-1build1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.0.1+repack-2",
"2.2.0+repack-1",
"2.2.0+repack-1build1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "r-cran-jsonlite",
"binary_version": "1.7.3+dfsg-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "r-cran-jsonlite",
"purl": "pkg:deb/ubuntu/r-cran-jsonlite@1.7.3+dfsg-1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.7.2+dfsg-1",
"1.7.3+dfsg-1"
]
},
{
"ecosystem_specific": {
"availability": "No subscription required",
"binaries": [
{
"binary_name": "libyajl2",
"binary_version": "2.1.0-3ubuntu0.22.04.1"
},
{
"binary_name": "yajl-tools",
"binary_version": "2.1.0-3ubuntu0.22.04.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:22.04:LTS",
"name": "yajl",
"purl": "pkg:deb/ubuntu/yajl@2.1.0-3ubuntu0.22.04.1?arch=source\u0026distro=jammy"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "2.1.0-3ubuntu0.22.04.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.1.0-3",
"2.1.0-3build1",
"2.1.0-3build2"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "argyll",
"binary_version": "3.1.0+repack-1build4"
},
{
"binary_name": "argyll-ref",
"binary_version": "3.1.0+repack-1build4"
}
]
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "argyll",
"purl": "pkg:deb/ubuntu/argyll@3.1.0+repack-1build4?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.3.1+repack-1ubuntu2",
"3.1.0+repack-1",
"3.1.0+repack-1build2",
"3.1.0+repack-1build3",
"3.1.0+repack-1build4"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "r-cran-jsonlite",
"binary_version": "1.8.8+dfsg-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:24.04:LTS",
"name": "r-cran-jsonlite",
"purl": "pkg:deb/ubuntu/r-cran-jsonlite@1.8.8+dfsg-1?arch=source\u0026distro=noble"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.8.5+dfsg-1",
"1.8.7+dfsg-1",
"1.8.8+dfsg-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "argyll",
"binary_version": "3.3.0+repack-1"
},
{
"binary_name": "argyll-ref",
"binary_version": "3.3.0+repack-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "argyll",
"purl": "pkg:deb/ubuntu/argyll@3.3.0+repack-1?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"3.1.0+repack-1.1",
"3.3.0+repack-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "r-cran-jsonlite",
"binary_version": "1.9.1+dfsg-1"
}
]
},
"package": {
"ecosystem": "Ubuntu:25.10",
"name": "r-cran-jsonlite",
"purl": "pkg:deb/ubuntu/r-cran-jsonlite@1.9.1+dfsg-1?arch=source\u0026distro=questing"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.9.1+dfsg-1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "argyll",
"binary_version": "3.3.0+repack-1.1"
},
{
"binary_name": "argyll-ref",
"binary_version": "3.3.0+repack-1.1"
}
]
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "argyll",
"purl": "pkg:deb/ubuntu/argyll@3.3.0+repack-1.1?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"3.3.0+repack-1",
"3.3.0+repack-1.1"
]
},
{
"ecosystem_specific": {
"binaries": [
{
"binary_name": "r-cran-jsonlite",
"binary_version": "2.0.0+dfsg-2"
}
]
},
"package": {
"ecosystem": "Ubuntu:26.04:LTS",
"name": "r-cran-jsonlite",
"purl": "pkg:deb/ubuntu/r-cran-jsonlite@2.0.0+dfsg-2?arch=source\u0026distro=resolute"
},
"ranges": [
{
"events": [
{
"introduced": "0"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"1.9.1+dfsg-1",
"2.0.0+dfsg-2"
]
}
],
"aliases": [],
"details": "There\u0027s a memory leak in yajl 2.1.0 with use of yajl_tree_parse function. which will cause out-of-memory in server and cause crash.",
"id": "UBUNTU-CVE-2023-33460",
"modified": "2026-05-20T15:02:41Z",
"published": "2023-06-06T12:15:00Z",
"references": [
{
"type": "REPORT",
"url": "https://ubuntu.com/security/CVE-2023-33460"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6233-1"
},
{
"type": "ADVISORY",
"url": "https://ubuntu.com/security/notices/USN-6233-2"
},
{
"type": "REPORT",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-33460"
}
],
"related": [
"USN-6233-1",
"USN-6233-2"
],
"schema_version": "1.7.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
},
{
"score": "low",
"type": "Ubuntu"
}
],
"upstream": [
"CVE-2023-33460"
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.