1. Home
  2. Security Advisories
  3. Ubuntu
  4. USN-6103-1

[USN-6103-1] JSON Schema vulnerability

Severity Critical
Affected Packages 2
CVEs 1
Info Packages Vulnerabilities

JSON Schema could be made to crash or run programs if it opened specially crafted input.

It was discovered that JSON Schema incorrectly handled certain inputs. If a
user or an automated system were tricked into opening a specially crafted
input file, a remote attacker could possibly use this issue to exploit
JavaScript runtimes and cause a denial of service or execute arbitrary code.

Package Affected Version
pkg:deb/ubuntu/node-json-schema?distro=focal < 0.2.3-1+deb10u1build0.20.04.1
pkg:deb/ubuntu/node-json-schema?distro=bionic < 0.2.3-1+deb10u1build0.18.04.1
ID
USN-6103-1
Severity
critical
Severity from
CVE-2021-3918
URL
https://ubuntu.com/security/notices/USN-6103-1
Published
2023-05-24T11:08:39
(16 months ago)
Modified
2023-05-24T11:08:39
(16 months ago)
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:deb/ubuntu/node-json-schema?distro=focal ubuntu node-json-schema < 0.2.3-1+deb10u1build0.20.04.1 focal
Affected pkg:deb/ubuntu/node-json-schema?distro=bionic ubuntu node-json-schema < 0.2.3-1+deb10u1build0.18.04.1 bionic
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date