CVE-2020-9861

Summary

A stack overflow issue existed in Swift for Linux. The issue was addressed with improved input validation for dealing with deeply nested malicious JSON input.

Affected Software

VendorProductVersion RangeStatus
SwiftSwift 5.1.5 for Linuxunspecified < Swift 5.1.5 for Linuxaffected

Weaknesses

  • Parsing malicious JSON input containing deeply nested "array" or "object" structures may lead to a Denial of Service

ADP Enrichment

CVE Program Container

Additional References

References