漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Oj: Negative-Size memcpy in Oj::Parser create_id Attribute Handling
Vulnerability Description
Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, when in usual mode with create_id enabled, Oj::Parser#parse is vulnerable to heap corruption via a negative-size memcpy. When a JSON object key is exactly 65,535 bytes long, an integer truncation in form_attr (usual.c:63) converts the length to -1 before passing it to memcpy. This causes memcpy to copy SIZE_MAX bytes (interpreted as a huge size_t), corrupting heap memory and crashing the process. The issue has been fixed in version 3.17.2.
CVSS Information
N/A
Vulnerability Type
整数溢出或超界折返
Vulnerability Title
Peter Ohler oj 数字错误漏洞
Vulnerability Description
Peter Ohler oj是Peter Ohler个人开发者的一个高效JSON解析与代码生成的前端库。 Peter Ohler oj 3.17.2之前版本存在安全漏洞,该漏洞源于在普通模式下启用create_id时,Oj::Parser#parse容易因负大小memcpy导致堆损坏。
CVSS Information
N/A
Vulnerability Type
N/A