CVE-2023-50246

CVSS v3.1

6.2

Medium

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions jq version 1.7

Description The issue is related to a heap-based buffer overflow in the jq command-line JSON processor. This can potentially allow an attacker to cause a denial of service.

Recommendations For version 1.7, update to version 1.7.1 to resolve the issue.

Exploit

Fix

Heap Based Buffer Overflow

Buffer Overflow

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-122CWE-120CWE-787

Related Identifiers

ALT-PU-2023-8506

BDU:2024-02759

CVE-2023-50246

GHSA-686W-5M7M-54VC

OPENSUSE-SU-2024:13521-1

Affected Products

Alt Linux

Red Os

CVE-2023-50246

Weakness Enumeration

Related Identifiers

Affected Products

References · 30