PT-2026-39711 · Jq · Jq
Califmonk
·
Published
2026-05-11
·
Updated
2026-07-07
·
CVE-2026-41257
CVSS v4.0
7.3
High
| Vector | AV:L/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
jq versions prior to 1.8.2
Description
The bytecode VM's data stack tracks its allocation size using a signed integer. When the stack grows beyond approximately 1 GiB through deeply nested generator forks, the doubling arithmetic overflows. This wrapped value is then passed to
realloc and subsequently used in a memmove operation with offsets influenced by an attacker.Recommendations
Update to a version later than 1.8.1.
Exploit
Fix
Memory Corruption
Integer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Jq