Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2015-8863
Description:Off-by-one error in the tokenadd function in jv_parse.c in jq allows remote attackers to cause a denial of service (crash) via a long JSON- encoded number, which triggers a heap-based buffer overflow.
Test IDs: 1.3.6.1.4.1.25623.1.0.120694  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2015-8863
https://security.gentoo.org/glsa/201612-20
http://www.openwall.com/lists/oss-security/2016/04/23/1
http://www.openwall.com/lists/oss-security/2016/04/23/2
RedHat Security Advisories: RHSA-2016:1098
http://rhn.redhat.com/errata/RHSA-2016-1098.html
RedHat Security Advisories: RHSA-2016:1099
http://rhn.redhat.com/errata/RHSA-2016-1099.html
RedHat Security Advisories: RHSA-2016:1106
http://rhn.redhat.com/errata/RHSA-2016-1106.html
SuSE Security Announcement: openSUSE-SU-2016:1212 (Google Search)
http://lists.opensuse.org/opensuse-updates/2016-05/msg00012.html
SuSE Security Announcement: openSUSE-SU-2016:1214 (Google Search)
http://lists.opensuse.org/opensuse-updates/2016-05/msg00014.html




© 1998-2024 E-Soft Inc. All rights reserved.