Upgrade Oj to v3.13.19 to fix a seg fault (!93611) · Merge requests · GitLab.org / GitLab

Stan Hu requested to merge sh-bump-oj-3.13.19 into master Jul 30, 2022

What does this MR do and why?

Oj v3.13.16 introduced a new feature to obtain the line number and column in the Simple API JSON (SAJ) parser (https://github.com/ohler55/oj/pull/785), but there was a pointer type error that caused a seg fault for certain inputs. The bug was fixed in https://github.com/ohler55/oj/pull/799.

Full diff: https://my.diffend.io/gems/oj/3.13.18/3.13.19

Relates to https://gitlab.com/gitlab-org/gitlab/-/issues/369046

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited Jul 30, 2022 by Stan Hu

Admin message

Upgrade Oj to v3.13.19 to fix a seg fault

What does this MR do and why?

MR acceptance checklist

Merge request reports