Security: ohler55/oj
Security Advisories
View information about security vulnerabilities from this repository's maintainers.
-
DFVULN-858: Integer Overflow in Oj.load 2GB String HandlingGHSA-475m-ph3x-64gp published
Jun 16, 2026 by ohler55Moderate -
DFVULN-856: Use-After-Free in Oj::Parser SAJ Long Key CallbackGHSA-m578-w5vf-rfcm published
Jun 16, 2026 by ohler55Moderate -
DFVULN-855: Use-After-Free in Oj::Parser array_class/hash_class GC MarkingGHSA-vwm4-62gf-x745 published
Jun 16, 2026 by ohler55Moderate -
DFVULN-854: Negative-Size memcpy in Oj::Parser create_id Attribute HandlingGHSA-9cv6-qcjw-4grx published
Jun 16, 2026 by ohler55Moderate -
DFVULN-853: Use-After-Free in Oj::Parser Symbol Key Cache ToggleGHSA-2cw7-v8ff-p88r published
Jun 16, 2026 by ohler55Low -
DFVULN-852: Use-After-Free in Oj::Parser SAJ Callback via Input MutationGHSA-q2gm-54r6-8fwm published
Jun 16, 2026 by ohler55Low -
DFVULN-851: Use-After-Free in Oj::Doc Iterators via Reentrant CloseGHSA-9ppp-w3g4-fh4q published
Jun 16, 2026 by ohler55Low -
DFVULN-850: Heap Buffer Overflow in Oj.dump Exception Serialization via Large IndentGHSA-35w3-pjm6-wj95 published
Jun 16, 2026 by ohler55Low -
Stack Buffer Overflow in Oj::Doc#each_child via Deeply Nested InputGHSA-3m6q-jj5j-38c9 published
Jun 16, 2026 by ohler55High -
DFVULN-849: Stack Buffer Overflow in Oj.dump via Large IndentGHSA-3v45-f3vh-wg7m published
Jun 5, 2026 by ohler55Low