diff --git a/cjson-1.7.15-fix-cve-2024-31755.patch b/cjson-1.7.15-fix-cve-2024-31755.patch
new file mode 100644
index 0000000000000000000000000000000000000000..f8728b3699439bdeed4eb60e17473699bf05eb56
--- /dev/null
+++ b/cjson-1.7.15-fix-cve-2024-31755.patch
@@ -0,0 +1,27 @@
+From aa9be7adf91f267aa3575d5bfe5c281f9e748fcc Mon Sep 17 00:00:00 2001
+From: From: Up-wind <lj.upwind@gmail.com>
+Date: Tue, 12 Nov 2024 16:59:13 +0800
+Subject: [PATCH] fix-cve-2024-31755
+
+---
+ cJSON.c | 4 ++++
+ 1 file changed, 4 insertions(+)
+
+diff --git a/cJSON.c b/cJSON.c
+index 3063f74..2414851 100644
+--- a/cJSON.c
++++ b/cJSON.c
+@@ -405,6 +405,10 @@ CJSON_PUBLIC(char*) cJSON_SetValuestring(cJSON *object, const char *valuestring)
+     {
+         return NULL;
+     }
++    if (object->valuestring == NULL || valuestring == NULL)
++    {
++        return NULL;
++    }
+     if (strlen(valuestring) <= strlen(object->valuestring))
+     {
+         strcpy(object->valuestring, valuestring);
+-- 
+2.27.0
+
diff --git a/cjson.spec b/cjson.spec
index 1b52000ffabd44df30866233a542268c60c470ec..68e52a049a28a95e65391d9c8e0d2b06fcf0cbaf 100644
--- a/cjson.spec
+++ b/cjson.spec
@@ -1,4 +1,4 @@
-%define anolis_release 1
+%define anolis_release 2
 
 Name:           cjson
 Version:        1.7.15
@@ -9,6 +9,7 @@ License:        MIT and ASL 2.0
 URL:            https://github.com/DaveGamble/cJSON
 Source0:        %{url}/archive/v%{version}/%{name}-%{version}.tar.gz
  
+Patch0001:      cjson-1.7.15-fix-cve-2024-31755.patch
 BuildRequires:  gcc
 BuildRequires:  cmake
 
@@ -66,5 +67,8 @@ rm -f %{buildroot}%{_libdir}/*.{la,a}
 %doc README.md CHANGELOG.md CONTRIBUTORS.md
 
 %changelog
+* Tue Nov 12 2024 yangxinyu <yangxinyu@nfschina.com> - 1.7.15-2
+- add cjson-1.7.15-fix-cve-2024-31755.patch
+
 * Mon Aug 07 2023 mgb01105731 <mgb01105731@alibaba-inc.com> - 1.7.15-1
 - Init upstream from version 1.7.15