CVE-2024-53427

CVSS v3.1

8.1

High

Vector

AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions jq version 1.7.1

Description The issue is related to a stack-buffer-overflow in the decNumberCopy function within decNumber.c.

Recommendations For jq version 1.7.1, at the moment, there is no information about a newer version that contains a fix for this issue.

Fix

Type Confusion

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

ALT-PU-2025-7731

AZL-57376

BDU:2025-06690

CVE-2024-53427

ECHO-9E32-4170-F69D

GHSA-X6C3-QV5R-7Q22

OPENSUSE-SU-2025:15161-1

SUSE-SU-2025:20591-1

USN-7657-1

Alt Linux

Debian

Linuxmint

Red Os

Ubuntu