An update for cjson is now available for HCE 2.0

HCE2-SA-2025-0295 An update for cjson is now available for HCE 2.0 Critical HCE 2.0 Security Fix(es): cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ null,9999999999999999999999999999999999999999999999912345678901234567]}. (CVE-2023-26819) cJSON 1.5.0 through 1.7.18 allows out-of-bounds access via the decode_array_index_from_pointer function in cJSON_Utils.c, allowing remote attackers to bypass array bounds checking and access restricted data via malformed JSON pointer strings containing alphanumeric characters. (CVE-2025-57052) HCE 2.0 cjson-1.7.15-1.r6.hce2.x86_64.rpm cjson-devel-1.7.15-1.r6.hce2.x86_64.rpm cjson-1.7.15-1.r6.hce2.aarch64.rpm cjson-devel-1.7.15-1.r6.hce2.aarch64.rpm