========================================================================== Ubuntu Security Notice USN-6103-1 May 24, 2023 node-json-schema vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS Summary: JSON Schema could be made to crash or run programs if it opened specially crafted input. Software Description: - node-json-schema: A vocabulary that allows you to validate, annotate, and manipulate JSON files Details: It was discovered that JSON Schema incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to exploit JavaScript runtimes and cause a denial of service or execute arbitrary code. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 20.04 LTS: node-json-schema 0.2.3-1+deb10u1build0.20.04.1 Ubuntu 18.04 LTS: node-json-schema 0.2.3-1+deb10u1build0.18.04.1 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6103-1 CVE-2021-3918 Package Information: https://launchpad.net/ubuntu/+source/node-json-schema/0.2.3-1+deb10u1build0.20.04.1 https://launchpad.net/ubuntu/+source/node-json-schema/0.2.3-1+deb10u1build0.18.04.1