Описание
jq is a command-line JSON processor. In version 1.8.0 a heap use after free vulnerability exists within the function f_strflocaltime of /src/builtin.c. This issue has been patched in commit 499c91b, no known fix version exists at time of publication.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 1.7.1-6ubuntu1 |
| esm-apps/bionic | not-affected | |
| esm-apps/xenial | not-affected | |
| esm-infra-legacy/trusty | not-affected | |
| esm-infra/focal | not-affected | |
| jammy | not-affected | 1.6-2.1ubuntu3 |
| noble | not-affected | 1.7.1-3build1 |
| oracular | not-affected | 1.7.1-3build1 |
| plucky | not-affected | 1.7.1-3ubuntu1 |
| upstream | needs-triage |
Показывать по
EPSS
Связанные уязвимости
jq is a command-line JSON processor. In version 1.8.0 a heap use after free vulnerability exists within the function f_strflocaltime of /src/builtin.c. This issue has been patched in commit 499c91b, no known fix version exists at time of publication.
jq is a command-line JSON processor. In version 1.8.0 a heap use after free vulnerability exists within the function f_strflocaltime of /src/builtin.c. This issue has been patched in commit 499c91b, no known fix version exists at time of publication.
jq is a command-line JSON processor. In version 1.8.0 a heap use after ...
Уязвимость функции f_strflocaltime() функционального языка программирования jq, позволяющая нарушителю оказать воздействие на доступность защищаемой информации
EPSS