-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-8c07fcde49 2026-03-27 01:16:52.247657+00:00 --------------------------------------------------------------------------------
Name : rubygem-json Product : Fedora 43 Version : 2.13.2 Release : 2.fc43 URL : https://github.com/flori/json Summary : A JSON implementation in Ruby Description : This is a implementation of the JSON specification according to RFC 4627 in Ruby. You can think of it as a low fat alternative to XML, if you want to store data to disk or transmit it over a network rather than use a verbose markup language.
-------------------------------------------------------------------------------- Update Information:
This new updates backports a fix for a format string injection vulnerability in JSON.parse, which is now assigned as CVE-2026-33210 -------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 20 2026 Mamoru TASAKA mtasaka@fedoraproject.org - 2.13.2-2 - Backport upstream fix for format string injection vulnerability in JSON.parse (CVE-2026-33210) --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-8c07fcde49' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------