CVE-2026-39979 | jqlang jq jv_parse_sized length out-of-bounds (GHSA-2hhh-px8h-355p)

Inserito da Angelo Barbosa | Apr 14, 2026 | CVE

A vulnerability was found in jqlang jq. It has been rated as critical. The affected element is the function jv_parse_sized. Performing a manipulation of the argument length results in out-of-bounds read.

This vulnerability is identified as CVE-2026-39979. The attack can be initiated remotely. There is not any exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2026-39979 | jqlang jq jv_parse_sized length out-of-bounds (GHSA-2hhh-px8h-355p)

Post correlati

CVE-2025-21700 | Linux Kernel up to 6.6.75/6.12.12/6.13.1 use after free

CVE-2025-49841 | RVC-Boss GPT-SoVITS up to 20250228v3 process_ckpt.py load_sovits_new SoVITS_dropdown deserialization (GHSL-2025-049)

CVE-2025-13691 | IBM DataStage on Cloud Pak for Data up to 5.3.0 HTTP Response exposure of sensitive system information to an unauthorized control sphere

CVE-2024-3089 | PHPGurukul Emergency Ambulance Hiring Portal 1.0 Manage Ambulance Page manage-ambulance.php del cross-site request forgery