Vulnerabilidades en jqlang
20 resultadosCVE-2023-50246MEDIUMjq has heap-buffer-overflow vulnerability in the function decToString in decNumber.cEPSS 0.5%CVE-2026-32316HIGHjq: Integer overflow in jvp_string_append() allows Heap-based Buffer OverflowEPSS 0.5%CVE-2023-50268MEDIUMjq has stack-based buffer overflow in decNaNsEPSS 0.4%CVE-2025-48060HIGHAddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)EPSS 0.4%CVE-2024-53427HIGHdecNumberCopy in decNumber.c in jq through 1.7.1 does not properly consider that NaN is interpreted as numeric, which has a resultant stack-EPSS 0.4%CVE-2024-23337MEDIUMjq has signed integer overflow in jv.c:jvp_array_writeEPSS 0.4%CVE-2025-49014MEDIUMjq heap use after free vulnerability in f_strflocaltimeEPSS 0.3%CVE-2026-39979MEDIUMjq: Out-of-Bounds Read in jv_parse_sized() Error Formatting for Non-NUL-Terminated Counted BuffersEPSS 0.3%CVE-2026-33948LOWjq: Embedded-NUL Truncation in CLI JSON Input Path Causes Prefix-Only Validation of Malformed InputEPSS 0.3%CVE-2026-33947MEDIUMjq: Unbounded Recursion in jv_setpath(), jv_getpath() and delpaths_sorted()EPSS 0.2%CVE-2026-40164HIGHjq: Algorithmic complexity DoS via hardcoded MurmurHash3 seedEPSS 0.2%CVE-2025-9403MEDIUMjqlang jq JSON jq_test.c run_jq_tests assertionEPSS 0.2%CVE-2026-39956MEDIUMjq: Missing runtime type checks for _strindices lead to crash and limited memory disclosureEPSS 0.2%CVE-2026-40612MEDIUMjq: Stack overflow via unbounded recursion in jv_containsEPSS 0.2%CVE-2026-44777MEDIUMjq: stack overflow in module loading on mutual `include`EPSS 0.2%CVE-2026-43894MEDIUMjq: Wild stack write via signed-integer overflow in decNumber D2U() macroEPSS 0.2%CVE-2026-41256MEDIUMjq: Embedded NUL truncates top-level jq programs loaded with -fEPSS 0.2%CVE-2026-43895MEDIUMjq: Embedded NUL in jq import paths causes local redaction-policy bypass and preserves sensitive fields in published artifactsEPSS 0.2%CVE-2026-43896MEDIUMjq: Stack Overflow in Recursive Object MergeEPSS 0.2%CVE-2026-41257MEDIUMjq: Signed-int overflow in `stack_reallocate` (jq VM stack)EPSS 0.1%