Lucene search
K

7 matches found

Chainguard
Chainguard
added 2026/05/29 1:17 a.m.17 views

CVE-2026-32316 vulnerabilities

Vulnerabilities for packages: jq...

8.2CVSS5.8AI score0.00484EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/05/21 5:15 a.m.15 views

USN-8202-3: jq regression

USN-8202-1 fixed vulnerabilities in jq. The update caused a regression for Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that jq did not correctly handle certain string concatenations. An...

7.5CVSS6AI score0.00366EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.3 views

Photon OS 5.0: Jq PHSA-2026-5.0-0827

An update of the jq package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0827. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid307869...

8.2CVSS6.6AI score0.00559EPSS
Exploits6References8
Tenable Nessus
Tenable Nessus
added 2026/04/19 12:0 a.m.5 views

Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2026-32316)

The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-32316 advisory. - jq is a command-line JSON processor. An integer overflow vulnerability exists through version...

8.2CVSS6AI score0.00484EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2026/04/14 11:26 p.m.7 views

SUSE CVE-2026-32316

jq is a command-line JSON processor. An integer overflow vulnerability exists through version 1.8.1 within the jvpstringappend and jvpstringcopyreplacebad functions, where concatenating strings with a combined length exceeding 2^31 bytes causes a 32-bit unsigned integer overflow in the buffer...

6.8CVSS6AI score0.00484EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2026/04/13 5:49 p.m.5 views

CVE-2026-32316

jq is a command-line JSON processor. An integer overflow vulnerability exists through version 1.8.1 within the jvpstringappend and jvpstringcopyreplacebad functions, where concatenating strings with a combined length exceeding 2^31 bytes causes a 32-bit unsigned integer overflow in the buffer...

8.2CVSS6AI score0.00484EPSS
Exploits1
Anthropic
Anthropic
added 2026/03/29 8:43 p.m.16 views

ANT-2026-EBDTPNVH · jq · Heap Buffer Overflow

heap-buffer-overflow medium CVE-2026-32316 Severity Claude medium · Security research firm medium · Maintainer unknown Discovered by Claude Mythos Preview REPORT Anthropic's analysis, sealed at approval. Disclosure to the maintainer was performed by Trail of Bits. ANT-2026-EBDTPNVH: Integer...

8.2CVSS6AI score0.00484EPSS
Exploits1
Rows per page
Query Builder