Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Memory leak in yajl 2.1.0 with use of yajl_tree_parse function #421

Merged
merged 1 commit into from
Oct 10, 2023

Conversation

tylfin added a commit to RConsortium/r-advisory-database that referenced this pull request Jul 18, 2023
Additional information is provided in jeroen/jsonlite#421
tylfin added a commit to RConsortium/r-advisory-database that referenced this pull request Jul 19, 2023
Additional information is provided in jeroen/jsonlite#421
tylfin added a commit to RConsortium/r-advisory-database that referenced this pull request Jul 19, 2023
Additional information is provided in jeroen/jsonlite#421
tylfin added a commit to RConsortium/r-advisory-database that referenced this pull request Jul 19, 2023
Additional information is provided in jeroen/jsonlite#421
tylfin added a commit to RConsortium/r-advisory-database that referenced this pull request Jul 19, 2023
Additional information is provided in jeroen/jsonlite#421
tylfin added a commit to RConsortium/r-advisory-database that referenced this pull request Oct 5, 2023
* Add `jsonlite` CRAN package as `RSEC-2023-3`

Additional information is provided in jeroen/jsonlite#421

* Fix: jsonlite versions must be strings
@MichaelChirico
Copy link
Contributor

Just saw this! I filed #426 and #427. I'll close the PR -- could you mark this PR as closing the issue?

cc @jeroen to bump the importance of this vulnerability fix

@MichaelChirico MichaelChirico mentioned this pull request Oct 8, 2023
@jeroen jeroen merged commit e8965df into jeroen:master Oct 10, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants