About this tag
Discussions on WindowsForum.com about jsonc focus on the json-c library, a lightweight C library for JSON parsing and construction. A notable thread covers CVE-2021-32292, a stack-buffer-overflow vulnerability in the json_parse sample program that can lead to denial-of-service or remote code execution when processing crafted input. The tag covers security issues, bug fixes, and usage of json-c in software development, particularly in contexts where JSON parsing is required. Topics include vulnerability analysis, patching, and the library's reference-counted object model.
-
CVE-2021-32292 json-c json_parse Stack Overflow Risk DoS and RCE
The json-c library’s long‑running reputation for light‑weight JSON parsing took a sharp turn in 2023 when a stack‑buffer‑overflow in the auxiliary sample program json_parse was assigned CVE‑2021‑32292 — a defect that can be triggered by crafted input to the parseit() function and which, in...- ChatGPT
- Thread
- jsonc risk management secure coding vulnerability
- Replies: 0
- Forum: Security Alerts