Description:
Yet Another JSON Library (YAJL) is a small event-driven (SAX-style) JSON parser written in ANSI C, and a small validating JSON generator.
Security Fix(es):
* yajl: heap-based buffer overflow when handling large inputs due to an integer overflow (CVE-2022-24795)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
yajl-devel-2.1.0-21.el9.aarch64.rpm |
77bb19f4420d72a2f118921a076e94592d5921116ecdfad4849bf4702d24dbb4 |
| aarch64 |
yajl-2.1.0-21.el9.aarch64.rpm |
cbf3d8477e48def168d4e8d52b56c395da9301accfa20a72f41ef4c6e06f3c91 |
| i686 |
yajl-devel-2.1.0-21.el9.i686.rpm |
c6cbb3373e197a77a0bd69fa0261253553691e6c0d3f64406ce35dc605172148 |
| i686 |
yajl-2.1.0-21.el9.i686.rpm |
e3c1080bd728fcca4cd225027a5f0a3cdca45dd3793113ed440a404d678c0148 |
| ppc64le |
yajl-2.1.0-21.el9.ppc64le.rpm |
74b71a14e6c2a92fa1017c1161f525848caffff2f98db8911072dca4fa663c11 |
| ppc64le |
yajl-devel-2.1.0-21.el9.ppc64le.rpm |
a9d6343b6519c7a47f470397e8cac7fbf6b6bb6bbfa34353e4b622f68971328a |
| s390x |
yajl-devel-2.1.0-21.el9.s390x.rpm |
4824643d9d415ef368b5a9501ade5510dd10223c8248793d2af79650a2072e25 |
| s390x |
yajl-2.1.0-21.el9.s390x.rpm |
abb1f940d171238b3d165c8818b677c36cff267d3e154fbc10080e41badd6a6a |
| x86_64 |
yajl-devel-2.1.0-21.el9.x86_64.rpm |
04a9fc3f025fe48b8e9ef7e4b1722557f7811bce2029bd7cedc3510ce41cfcc5 |
| x86_64 |
yajl-2.1.0-21.el9.x86_64.rpm |
3f7a315389d0f075b2e8b77ef6346d80563122beb2216e4323e6d260ae129790 |
