SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Paid content will be excluded from the download.

Download | Alert*

OVAL

[3.7] jq: stack exhaustion via jv_dump_term() function (CVE-2016-4074)

ID: oval:org.secpod.oval:def:1800979	Date: (C)2018-05-07 (M)2022-06-06
Class: PATCH	Family: unix

The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service via a crafted JSON file.

Platform:

Alpine Linux 3.7

Product:

Reference:

8808

CVE 1

CPE 2