CVE-2026-54679
ADVISORY - debianSummary
jq is a command-line JSON processor. Prior to 1.8.2, on 32bit system, jvp_string_append has a chance of integer/multiple overflowing and then causing a massive buffer overrun. This vulnerability is fixed in 1.8.2.
EPSS Score: 0.00103 (0.012)
Common Weakness Enumeration (CWE)
ADVISORY - redhat
Integer Overflow or Wraparound
Sign in to Docker Scout
See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.
Sign in