CVE-2024-25713
HIGHyyjson <= 0.8.0 - Remote Code Execution via Double Free in Pool Allocator
Title source: llmDescription
yyjson through 0.8.0 has a double free, leading to remote code execution in some cases, because the pool_free function lacks loop checks. (pool_free is part of the pool series allocator, along with pool_malloc and pool_realloc.)
References (7)
Core 7
Core References
Exploit, Vendor Advisory
https://github.com/ibireme/yyjson/security/advisories/GHSA-q4m7-9pcm-fpxh
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/[email protected]/message/6KQ67T4R7QEWURW5NMCCVLTBASL4ECHE/
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/[email protected]/message/NNICQVIF7BRYFWYRL3HPVAJIPXN4OVTX/
Mailing List, Third Party Advisory
https://lists.fedoraproject.org/archives/list/[email protected]/message/TKQPEREDUDKGYJMFNFDQVYCVLWDRO2Y2/
Mailing List vendor-advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NNICQVIF7BRYFWYRL3HPVAJIPXN4OVTX/
Scores
CVSS v3
8.6
EPSS
0.0577
EPSS Percentile
90.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
total
Details
CWE
CWE-94
Status
published
Products (5)
fedoraproject/fedora
38
fedoraproject/fedora
39
fedoraproject/fedora
40
ibireme/yyjson
< 0.8.0
SwiftURL/github.com/ibireme/yyjson
0 - 0.9.0SwiftURL
Published
Feb 29, 2024
Tracked Since
Feb 18, 2026