« List of all packages

conf-jq

Opam page: https://opam.ocaml.org/packages/conf-jq/

Versions

Version
conf-jq.1 (latest)

Vulnerable external dependencies (21)

Product For package Vendor Severity CVE Published
jq conf-jq.1 jqlang Medium CVE-2026-44777 - jq: stack overflow in module loading on mutual `include` 5/11/2026
jq conf-jq.1 jqlang Medium CVE-2026-43896 - jq: Stack Overflow in Recursive Object Merge 5/11/2026
jq conf-jq.1 jqlang Medium CVE-2026-43895 - jq: Embedded NUL in jq import paths causes local redaction-policy bypass and preserves sensitive fields in published artifacts 5/11/2026
jq conf-jq.1 jqlang Medium CVE-2026-43894 - jq: Wild stack write via signed-integer overflow in decNumber D2U() macro 5/11/2026
jq conf-jq.1 jqlang Medium CVE-2026-41257 - jq: Signed-int overflow in `stack_reallocate` (jq VM stack) 5/11/2026
jq conf-jq.1 jqlang Medium CVE-2026-41256 - jq: Embedded NUL truncates top-level jq programs loaded with -f 5/11/2026
jq conf-jq.1 jqlang Medium CVE-2026-40612 - jq: Stack overflow via unbounded recursion in jv_contains 5/11/2026
jq conf-jq.1 jqlang Medium CVE-2026-39979 - jq: Out-of-Bounds Read in jv_parse_sized() Error Formatting for Non-NUL-Terminated Counted Buffers 4/13/2026
jq conf-jq.1 jqlang Medium CVE-2026-39956 - jq: Missing runtime type checks for _strindices lead to crash and limited memory disclosure 4/13/2026
jq conf-jq.1 jqlang Low CVE-2026-33948 - jq: Embedded-NUL Truncation in CLI JSON Input Path Causes Prefix-Only Validation of Malformed Input 4/13/2026
jq conf-jq.1 jqlang Medium CVE-2026-33947 - jq: Unbounded Recursion in jv_setpath(), jv_getpath() and delpaths_sorted() 4/13/2026
jq conf-jq.1 jqlang High CVE-2026-32316 - jq: Integer overflow in jvp_string_append() allows Heap-based Buffer Overflow 4/13/2026
jq conf-jq.1 jqlang Low CVE-2025-9403 - jqlang jq JSON jq_test.c run_jq_tests assertion 8/25/2025
jq conf-jq.1 jqlang High CVE-2025-48060 - AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt) 5/21/2025
jq conf-jq.1 jqlang High CVE-2024-53427 2/26/2025
jq conf-jq.1 jqlang Medium CVE-2024-23337 - jq has signed integer overflow in jv.c:jvp_array_write 5/21/2025
jq conf-jq.1 jqlang Medium CVE-2023-50268 - jq has stack-based buffer overflow in decNaNs 12/13/2023
jq conf-jq.1 jqlang Medium CVE-2023-50246 - jq has heap-buffer-overflow vulnerability in the function decToString in decNumber.c 12/13/2023
jq conf-jq.1 n/a High CVE-2023-49355 12/11/2023
jq conf-jq.1 n/a Unknown CVE-2016-4074 5/6/2016