Search CVE reports
11 – 20 of 42301 results
runc is a CLI tool for spawning and running containers according to the OCI specification. In versions prior to 1.3.6, 1.4.0-rc.1, 1.4.0-rc.12, 1.5.0-rc.1, and 1.5.0-rc.1, when setting up the container rootfs, setupPtmx and...
3 affected packages
runc, runc-app, runc-stable
| Package | 20.04 LTS |
|---|---|
| runc | Needs evaluation |
| runc-app | Needs evaluation |
| runc-stable | — |
Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, Oj.load is vulnerable to heap corruption when parsing a JSON string longer than 2 GB. An integer overflow in...
1 affected package
ruby-oj
| Package | 20.04 LTS |
|---|---|
| ruby-oj | Needs evaluation |
Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. Prior to version 3.17.2, is vulnerable to Use-After-Free when in SAJ mode. The Oj::Parser does not protect cached object keys (≥ 35 bytes) from...
1 affected package
ruby-oj
| Package | 20.04 LTS |
|---|---|
| ruby-oj | Needs evaluation |
Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, Oj::Parser in usual mode does not mark array_class and hash_class references during garbage collection, leading to...
1 affected package
ruby-oj
| Package | 20.04 LTS |
|---|---|
| ruby-oj | Needs evaluation |
Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, when in usual mode with create_id enabled, Oj::Parser#parse is vulnerable to heap corruption via a negative-size...
1 affected package
ruby-oj
| Package | 20.04 LTS |
|---|---|
| ruby-oj | Needs evaluation |
Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. Prior to version 3.17.2, disabling symbol_keys on a reused Oj::Parser instance triggers a heap use-after-free. When symbol_keys is toggled from...
1 affected package
ruby-oj
| Package | 20.04 LTS |
|---|---|
| ruby-oj | Needs evaluation |
Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2,Oj::Parser#parse is vulnerable to a heap use-after-free when a SAJ/SAJ2 callback mutates the input JSON string during...
1 affected package
ruby-oj
| Package | 20.04 LTS |
|---|---|
| ruby-oj | Needs evaluation |
Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. Prior to 3.17.2, Oj::Doc iterators (each_value, each_child, each_leaf) were vulnerable to a heap use-after-free. When a Ruby block yielded during...
1 affected package
ruby-oj
| Package | 20.04 LTS |
|---|---|
| ruby-oj | Needs evaluation |
Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, when in object mode, Oj.dump is vulnerable to a heap buffer overflow when serializing Exception objects with a large...
1 affected package
ruby-oj
| Package | 20.04 LTS |
|---|---|
| ruby-oj | Needs evaluation |
Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.3, Oj::Doc#each_child, when invoked recursively over a deeply nested JSON document, overflows a fixed-size stack buffer...
1 affected package
ruby-oj
| Package | 20.04 LTS |
|---|---|
| ruby-oj | Needs evaluation |