Security context

What an agent needs to avoid regressing past fixes and find the next vuln in this repo.

open-source-parsers/jsoncpp
master @ edc01ab
5
Fixes
0
CVEs
HIGH
Peak severity
Highlights
Memory Safety: 3 prior fixes. Scrutinize any change in this area.
src/lib_json/json_reader.cpp: most-fixed (2 issues). Treat as high-risk during review.
3 high-severity fixes in this history; regressions here are high-impact.
Recurring patterns

The bug types that recur here, drawn from past fixes, not open vulnerabilities.

Memory Corruption: Unsafe manual trailing zero truncation on a fixed-size buffer inside `valueToString(double)` allows stack corruption; the fix replaced this logic with simplified, standard formatting functions like snprintf.
Memory Safety: An integer overflow in string allocation and negative token lengths allow out-of-bounds memory corruption when handling large strings or tokens.
Memory Safety: A stack-based buffer overflow (off-by-one write) occurred during the parsing of 32-character floating-point numbers due to inadequate buffer sizes relative to fixed-size parsing limits.