merge revision(s) 36e9ed7fef6eb2d14becf6c52452e4ab16e4bf01: [Backport #16698]

backport 80b5a0ff2a7709367178f29d4ebe1c54122b1c27 partially as a securify fix for CVE-2020-10663. The patch was provided by Jeremy Evans. git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/branches/ruby_2_6@67856 b2dd03c8-39d4-4d8f-98ff-823fe69b080e git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/branches/ruby_2_5@67869 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
author: usa <usa@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> 2020-03-30 22:22:10 +0000
committer: usa <usa@b2dd03c8-39d4-4d8f-98ff-823fe69b080e> 2020-03-30 22:22:10 +0000
commit: b379ecd8b6832dfcd5dad353b6bfd41701e2d678 (patch)
tree: 07f528703f268460aca1ae9428bb8efc05ccf1d2 /ext/json/parser/parser.rl
parent: 67b77240ee72a401226ffe2127daaf3a65109ee1 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/ext/json/parser/parser.rl b/ext/json/parser/parser.rl
index 29900a4a4a..f7dbcffb5f 100644
--- a/ext/json/parser/parser.rl
+++ b/ext/json/parser/parser.rl
@@ -710,7 +710,7 @@ static VALUE cParser_initialize(int argc, VALUE *argv, VALUE self)
     } else {
         json->max_nesting = 100;
         json->allow_nan = 0;
-        json->create_additions = 1;
+        json->create_additions = 0;
         json->create_id = rb_funcall(mJSON, i_create_id, 0);
         json->object_class = Qnil;
         json->array_class = Qnil;
author	usa <usa@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>	2020-03-30 22:22:10 +0000
committer	usa <usa@b2dd03c8-39d4-4d8f-98ff-823fe69b080e>	2020-03-30 22:22:10 +0000
commit	b379ecd8b6832dfcd5dad353b6bfd41701e2d678 (patch)
tree	07f528703f268460aca1ae9428bb8efc05ccf1d2 /ext/json/parser/parser.rl
parent	67b77240ee72a401226ffe2127daaf3a65109ee1 (diff)