VDB

GCVE-VVD-MAGEIA-2017-415

GCVE-VVD-MAGEIA-2017-415
Advisory Published
Vulnetix · Advisory published November 19, 2017
A heap-based buffer overflow flaw was found in jq's tokenadd() function. By tricking a victim into processing a specially crafted JSON file, an attacker could use this flaw to crash jq or, potentially, execute arbitrary code on the victim's system (CVE-2015-8863). Stack exhaustion could affect availability when parsing untrusted input (CVE-2016-4074).

Affected Products

VendorProductVersionsPlatforms
Mageiajq0 (affected), 1.5-1.1.mga6 (unaffected)

Browse GCVE Records

72,337 records in the GCVE database · Updated July 14, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›