jsonsl
jsonsl copied to clipboard
mnunberg
Embeddable, Fast, Streaming, Non-Buffering JSON Parser
Malformed JSON can trigger access outside of the string literals used to verify specials. This change adds bounds checks to the verification of specials. Fixes mnunberg/jsonsl#45
The attached input file triggers a buffer overflow: [bad_input.zip](https://github.com/mnunberg/jsonsl/files/3687685/bad_input.zip) This corresponds to the details provided via direct email.
Dear Mark Nunberg, We have found a NULL pointer dereference issue in glib-datatype example in jsonsl. The crash input is automatically generated by our test generation tool FOCAL. You can...
Dear Mark Nunberg, We have found a NULL pointer dereference issue in jsonsl. The crash input is automatically generated by our test generation tool FOCAL. You can find crash.json in...
This adds fuzzing by way of [ClusterFuzzLite](https://google.github.io/clusterfuzzlite/), which is a GitHub action that will perform a short amount of fuzzing for new PRs. The goal is to use fuzzing to...
# Summary This pull request introduces a CodeQL workflow to enhance the security analysis of this repository. # What is CodeQL CodeQL is a static analysis tool that helps identify...
Separately checking the state of a file before operating on it may allow an attacker to modify the file between the two operations.