json-c Multiple Vulnerabilities

2014.04.10
Credit: Huzaifa Sidhpurwala
Risk: High
Local: No
Remote: Yes
CVE: CVE-2013-6370 | CVE-2013-6371
CWE: N/A

Hi All, Florian Weimer of the Red Hat Product Security Team discovered two flaws in json-c, details as follows: 1. CVE-2013-6371 json-c: hash collision DoS The hash function in the json-c library was weak, and that parsing smallish JSON strings showed quadratic timing behaviour. This could cause an application linked to the json-c library, and that processes some specially-crafted JSON data, to use excessive amounts of CPU. Reference: https://bugzilla.redhat.com/show_bug.cgi?id=1032311 2. CVE-2013-6370 json-c: buffer overflow if size_t is larger than int The printbuf APIs used in the json-c library used ints for counting buffer lengths, which is inappropriate for 32bit architectures. These functions need to be changed to using size_t if possible for sizes, or to be hardened against negative values if not. This could be used to cause a denial of service in an application linked to the json-c library. Reference: https://bugzilla.redhat.com/show_bug.cgi?id=1032322 Both these issues are fixed via the following upstream commit: https://github.com/json-c/json-c/commit/64e36901a0614bf64a19bc3396469c66dcd0b015 -- Huzaifa Sidhpurwala / Red Hat Security Response Team

References:

https://github.com/json-c/json-c/commit/64e36901a0614bf64a19bc3396469c66dcd0b015
https://bugzilla.redhat.com/show_bug.cgi?id=1032322
https://bugzilla.redhat.com/show_bug.cgi?id=1032311


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top