CVE-2015-8863

Off-by-one error in the tokenadd function in jv_parse.c in jq allows remote attackers to cause a denial of service (crash) via a long JSON-encoded number, which triggers a heap-based buffer overflow.

Published: May 6, 2016
Updated: Apr 13, 2023
CVE: CVE-2015-8863
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
opensuse / leap	42.1	42.1.x
opensuse / opensuse	13.2	13.2.x
jq_project / jq	-	1.5.x

http://lists.opensuse.org/opensuse-updates/2016-05/msg00012.html
http://lists.opensuse.org/opensuse-updates/2016-05/msg00014.html
http://rhn.redhat.com/errata/RHSA-2016-1098.html
http://rhn.redhat.com/errata/RHSA-2016-1099.html
http://rhn.redhat.com/errata/RHSA-2016-1106.html
http://www.openwall.com/lists/oss-security/2016/04/23/1
http://www.openwall.com/lists/oss-security/2016/04/23/2
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=802231
https://github.com/stedolan/jq/commit/8eb1367ca44e772963e704a700ef72ae2e12babd
https://github.com/stedolan/jq/issues/995
https://security.gentoo.org/glsa/201612-20

Vulnerability Database

290,273

CVE-2015-8863