--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2020-63c6f4ab1d
2020-05-17 02:41:30.103477
--------------------------------------------------------------------------------
Name : json-c
Product : Fedora 32
Version : 0.13.1
Release : 12.fc32
URL :
https://github.com/json-c/json-c
Summary : JSON implementation in C
Description :
JSON-C implements a reference counting object model that allows you
to easily construct JSON objects in C, output them as JSON formatted
strings and parse JSON formatted strings back into the C representation
of JSON objects. It aims to conform to RFC 7159.
--------------------------------------------------------------------------------
Update Information:
- Fix CVE-2020-12762.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 13 2020 Bj��rn Esser <besser82(a)fedoraproject.org> - 0.13.1-12
- Fix CVE-2020-12762
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1835253 - CVE-2020-12762 json-c: integer overflow and out-of-bounds write via
a large JSON file
https://bugzilla.redhat.com/show_bug.cgi?id=1835253
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-63c6f4ab1d' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------