{"affected":[{"ecosystem_specific":{"binaries":[{"python3-ujson":"1.35-150100.3.5.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Development Tools 15 SP3","name":"python-ujson","purl":"pkg:rpm/suse/python-ujson&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.35-150100.3.5.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python3-ujson":"1.35-150100.3.5.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Development Tools 15 SP4","name":"python-ujson","purl":"pkg:rpm/suse/python-ujson&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.35-150100.3.5.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-ujson":"1.35-150100.3.5.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Package Hub 15 SP3","name":"python-ujson","purl":"pkg:rpm/suse/python-ujson&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.35-150100.3.5.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-ujson":"1.35-150100.3.5.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Package Hub 15 SP4","name":"python-ujson","purl":"pkg:rpm/suse/python-ujson&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.35-150100.3.5.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python2-ujson":"1.35-150100.3.5.1","python3-ujson":"1.35-150100.3.5.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.3","name":"python-ujson","purl":"pkg:rpm/opensuse/python-ujson&distro=openSUSE%20Leap%2015.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.35-150100.3.5.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"python3-ujson":"1.35-150100.3.5.1"}]},"package":{"ecosystem":"openSUSE:Leap 15.4","name":"python-ujson","purl":"pkg:rpm/opensuse/python-ujson&distro=openSUSE%20Leap%2015.4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.35-150100.3.5.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for python-ujson fixes the following issues:\n\n- CVE-2022-31116: Fixed improper decoding of escaped surrogate characters (bsc#1201255).\n- CVE-2022-31117: Fixed a double free while reallocating a buffer for string decoding (bsc#1201254).\n","id":"SUSE-SU-2022:2673-1","modified":"2022-08-04T12:07:43Z","published":"2022-08-04T12:07:43Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20222673-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201254"},{"type":"REPORT","url":"https://bugzilla.suse.com/1201255"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-31116"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-31117"}],"related":["CVE-2022-31116","CVE-2022-31117"],"summary":"Security update for python-ujson","upstream":["CVE-2022-31116","CVE-2022-31117"]}