Information on source package jq

Available versions

ReleaseVersion
bullseye1.6-2.1
bookworm1.6-2.1
trixie1.7.1-6
sid1.7.1-6

Open issues

BugbullseyebookwormtrixiesidDescription
CVE-2025-48060vulnerablevulnerablevulnerablevulnerablejq is a command-line JSON processor. In versions up to and including 1 ...
CVE-2024-53427fixedvulnerable (no DSA)fixedfixeddecNumberCopy in decNumber.c in jq through 1.7.1 does not properly con ...
CVE-2024-23337vulnerablevulnerablefixedfixedjq is a command-line JSON processor. In versions up to and including 1 ...

Resolved issues

BugDescription
CVE-2023-50268jq is a command-line JSON processor. Version 1.7 is vulnerable to stac ...
CVE-2023-50246jq is a command-line JSON processor. Version 1.7 is vulnerable to heap ...
CVE-2023-49355decToString in decNumber/decNumber.c in jq 88f01a7 has a one-byte out- ...
CVE-2016-4074The jv_dump_term function in jq 1.5 allows remote attackers to cause a ...
CVE-2015-8863Off-by-one error in the tokenadd function in jv_parse.c in jq allows r ...

Search for package or bug name: Reporting problems