To report a security issue, either report it privately on GitHub (preferred) or through the Tidelift security contact. Do not report them on the public issue tracker.
Security: ultrajson/ultrajson
Security
.github/SECURITY.md
-
Integer overflow handling large indent leads to buffer overflow or infinite loopGHSA-c8rr-9gxc-jprv published
Mar 17, 2026 by bwoodsendHigh -
Memory Leak parsing large integers allows DoSGHSA-wgvc-ghv9-3pmm published
Mar 17, 2026 by bwoodsendHigh -
Potential double free of buffer during string decodingGHSA-fm67-cv37-96ff published
Jul 2, 2022 by hugovkLow -
Incorrect handling of invalid surrogate pair charactersGHSA-wpqr-jcpx-745r published
Jul 2, 2022 by hugovkModerate
Learn more about advisories related to ultrajson/ultrajson in the GitHub Advisory Database