CVE-2026-54679

ADVISORY - debian

Summary

jq is a command-line JSON processor. Prior to 1.8.2, on 32bit system, jvp_string_append has a chance of integer/multiple overflowing and then causing a massive buffer overrun. This vulnerability is fixed in 1.8.2.


EPSS Score: 0.00103 (0.012)

Common Weakness Enumeration (CWE)

ADVISORY - redhat

Integer Overflow or Wraparound


Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.

Sign in