Lucene search
K

5 matches found

OSV
OSV
added 6 days ago3 views

OESA-2026-2803 jq security update

jq is a lightweight and flexible command-line JSON processor. you can use it to slice and filter and map and transform structured data. It is written in portable C, and it has zero runtime dependencies. it can mangle the data format that you have into the one that you want. Security Fixes: jq is ...

7.1CVSS6.1AI score0.00165EPSS
Exploits2References4
OSV
OSV
added 2026/06/25 6:16 p.m.7 views

DEBIAN-CVE-2026-49839

jq is a command-line JSON processor. Prior to 1.8.2, jq --rawfile can turn a handled oversized-string error into invalid-state reuse and a real heap out-of-bounds write in assertion-disabled builds. When jvloadfileraw=1 reads an attacker-controlled file, it repeatedly appends file chunks to the...

7.1CVSS5.8AI score0.00165EPSS
Exploits1References1
Circl
Circl
added 2026/06/25 5:55 p.m.8 views

CVE-2026-49839

creationtimestamp| type| source ---|---|--- 2026-06-25 17:55:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mp4yt3of422z...

7.1CVSS5.8AI score0.00165EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/06/25 5:17 p.m.38 views

CVE-2026-49839 jq --rawfile invalid-state reuse after String too long causes heap-buffer-overflow

jq is a command-line JSON processor. Prior to 1.8.2, jq --rawfile can turn a handled oversized-string error into invalid-state reuse and a real heap out-of-bounds write in assertion-disabled builds. When jvloadfileraw=1 reads an attacker-controlled file, it repeatedly appends file chunks to the...

7.1CVSS0.00165EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/06/22 12:0 a.m.21 views

Amazon Linux 2023 : jq, jq-devel (ALAS2023-2026-1860)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1860 advisory. jq --rawfile invalid-state reuse after String too long causes heap-buffer-overflow CVE-2026-49839 Tenable has extracted the preceding description block directly from the tested product security advisor...

7.1CVSS6AI score0.00165EPSS
Exploits1References4
Rows per page
Query Builder