It was discovered that jq incorrectly handled certain values when parsing JSON data. A remote attacker could possibly use this issue to cause jq to crash, resulting in a denial of service. (CVE-2024-23337)
It was discovered that jq incorrectly handled NaN values when parsing JSON data. A remote attacker could possibly use this issue to cause jq to crash, resulting in a denial of service. This issue only affected Ubuntu 24.04 LTS, and Ubuntu 25.04. (CVE-2024-53427)
It was discovered that jq incorrectly handled certain values when parsing JSON data. A remote attacker could use this issue to cause jq to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2025-48060)
{ "availability": "No subscription required", "binaries": [ { "binary_name": "jq", "binary_version": "1.6-2.1ubuntu3.1" }, { "binary_name": "jq-dbgsym", "binary_version": "1.6-2.1ubuntu3.1" }, { "binary_name": "libjq-dev", "binary_version": "1.6-2.1ubuntu3.1" }, { "binary_name": "libjq1", "binary_version": "1.6-2.1ubuntu3.1" }, { "binary_name": "libjq1-dbgsym", "binary_version": "1.6-2.1ubuntu3.1" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "jq", "binary_version": "1.7.1-3ubuntu0.24.04.1" }, { "binary_name": "jq-dbgsym", "binary_version": "1.7.1-3ubuntu0.24.04.1" }, { "binary_name": "libjq-dev", "binary_version": "1.7.1-3ubuntu0.24.04.1" }, { "binary_name": "libjq1", "binary_version": "1.7.1-3ubuntu0.24.04.1" }, { "binary_name": "libjq1-dbgsym", "binary_version": "1.7.1-3ubuntu0.24.04.1" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_name": "jq", "binary_version": "1.7.1-3ubuntu1.1" }, { "binary_name": "jq-dbgsym", "binary_version": "1.7.1-3ubuntu1.1" }, { "binary_name": "libjq-dev", "binary_version": "1.7.1-3ubuntu1.1" }, { "binary_name": "libjq1", "binary_version": "1.7.1-3ubuntu1.1" }, { "binary_name": "libjq1-dbgsym", "binary_version": "1.7.1-3ubuntu1.1" } ] }