Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: jq (CVE-2024-53427)

The version of jq installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53427 advisory. - decNumberCopy in decNumber.c in jq through 1.7.1 does not properly consider that NaN is interpreted as numeric,...

8.1CVSS6.1AI score0.00352EPSS
Exploits1References2
Amazon
Amazon
added 2025/04/01 12:0 a.m.8 views

Important: jq

Issue Overview: decNumberCopy in decNumber.c in jq through 1.7.1 does not properly consider that NaN is interpreted as numeric, which has a resultant stack-based buffer overflow and out-of-bounds write, as demonstrated by use of --slurp with subtraction, such as a filter of .-. when the input has...

8.1CVSS7.3AI score0.00352EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2025/03/01 2:55 a.m.3 views

SUSE CVE-2024-53427

decNumberCopy in decNumber.c in jq through 1.7.1 does not properly consider that NaN is interpreted as numeric, which has a resultant stack-based buffer overflow and out-of-bounds write, as demonstrated by use of --slurp with subtraction, such as a filter of .-. when the input has a certain form ...

5.3CVSS7.5AI score0.00352EPSS
Exploits1References5
OSV
OSV
added 2025/02/26 4:15 p.m.4 views

DEBIAN-CVE-2024-53427

decNumberCopy in decNumber.c in jq through 1.7.1 does not properly consider that NaN is interpreted as numeric, which has a resultant stack-based buffer overflow and out-of-bounds write, as demonstrated by use of --slurp with subtraction, such as a filter of .-. when the input has a certain form ...

8.1CVSS6AI score0.00352EPSS
Exploits1References1
OSV
OSV
added 2025/02/26 4:15 p.m.2 views

UBUNTU-CVE-2024-53427

decNumberCopy in decNumber.c in jq through 1.7.1 does not properly consider that NaN is interpreted as numeric, which has a resultant stack-based buffer overflow and out-of-bounds write, as demonstrated by use of --slurp with subtraction, such as a filter of .-. when the input has a certain form ...

8.1CVSS6.5AI score0.00352EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/02/26 12:0 a.m.9 views

CVE-2024-53427

decNumberCopy in decNumber.c in jq through 1.7.1 does not properly consider that NaN is interpreted as numeric, which has a resultant stack-based buffer overflow and out-of-bounds write, as demonstrated by use of --slurp with subtraction, such as a filter of .-. when the input has a certain form ...

8.1CVSS7.7AI score0.00352EPSS
Exploits1References5
Rows per page
Query Builder