The Library API in buger jsonparser through 2019-12-04 allows attackers to cause a denial of service (infinite loop) via a Delete call.
The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Jsonparser | Jsonparser_project | * | 1.0.0 (excluding) |
| Golang-github-buger-jsonparser | Ubuntu | bionic | * |
| Golang-github-buger-jsonparser | Ubuntu | eoan | * |
| Golang-github-buger-jsonparser | Ubuntu | esm-apps/bionic | * |
| Golang-github-buger-jsonparser | Ubuntu | esm-apps/focal | * |
| Golang-github-buger-jsonparser | Ubuntu | focal | * |
| Golang-github-buger-jsonparser | Ubuntu | trusty | * |