VDB
GCVE-VVD-MAGEIA-2017-415
GCVE-VVD-MAGEIA-2017-415
Advisory Published
A heap-based buffer overflow flaw was found in jq's tokenadd() function.
By tricking a victim into processing a specially crafted JSON file, an
attacker could use this flaw to crash jq or, potentially, execute
arbitrary code on the victim's system (CVE-2015-8863).
Stack exhaustion could affect availability when parsing untrusted input
(CVE-2016-4074).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | jq | 0 (affected), 1.5-1.1.mga6 (unaffected) | — |
Aliases
Transitive aliases
Browse GCVE Records
72,337 records in the GCVE database · Updated July 14, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.