Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Jq
(Jq_project)| Repositories | https://github.com/stedolan/jq |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2016-05-06 | CVE-2016-4074 | The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted JSON file. This issue has been fixed in jq 1.6_rc1-r0. | Jq | 7.5 | ||
| 2016-05-06 | CVE-2015-8863 | Off-by-one error in the tokenadd function in jv_parse.c in jq allows remote attackers to cause a denial of service (crash) via a long JSON-encoded number, which triggers a heap-based buffer overflow. | Jq, Leap, Opensuse | 9.8 |