parsing bug

A logic bug in the Linux kernel’s Kvaser USB CAN driver has been fixed after being assigned CVE-2025-68308—a subtle off-by-one handling error in the command parsers that could cause an infinite parsing loop and result in a local denial-of-service on systems that interact with affected Kvaser USB...

cJSON version 1.7.15 contains a parsing defect (tracked as CVE‑2023‑26819) that can be triggered by a crafted JSON document and lead to denial‑of‑service conditions—developers and operators should treat this as a reliability and supply‑chain risk and apply vendor or distribution fixes...