Impact
What kind of vulnerability is it? Who is impacted?
Out-of-boundary memory read caused by using of unsafe yyjson string parsing
Introduced in: 88b1b55 and fixed in 27b474f
Typically Debian unstable and its derivatives.
Patches
Has the problem been patched? What versions should users upgrade to?
Yes. Users should always use the latest version
Workarounds
Is there a way for users to fix or remediate the vulnerability without upgrading?
Make sure the tempSensor field in config file is a string value ( or not exist at all )
References
Are there any links users can visit to find out more?
#2202
s0ssh Reporter
Impact
What kind of vulnerability is it? Who is impacted?
Out-of-boundary memory read caused by using of unsafe yyjson string parsing
Introduced in: 88b1b55 and fixed in 27b474f
Typically Debian unstable and its derivatives.
Patches
Has the problem been patched? What versions should users upgrade to?
Yes. Users should always use the latest version
Workarounds
Is there a way for users to fix or remediate the vulnerability without upgrading?
Make sure the
tempSensorfield in config file is a string value ( or not exist at all )References
Are there any links users can visit to find out more?
#2202