CVE-2016-4074
published 2016-05-06CVE-2016-4074: The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted JSON file…
PriorityP434high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EPSS
5.33%
91.6th percentile
The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted JSON file. This issue has been fixed in jq 1.6_rc1-r0.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | jq | < jq 1.5+dfsg-1.1 (bookworm) | jq 1.5+dfsg-1.1 (bookworm) |
| jq_project | jq | <= 1.5 | — |
| jqlang | jq | >= 0 < 1.5+dfsg-1.1 | 1.5+dfsg-1.1 |
| jqlang | jq | >= 0 < 1.5+dfsg-1.1 | 1.5+dfsg-1.1 |
| jqlang | jq | >= 0 < 1.5+dfsg-1.1 | 1.5+dfsg-1.1 |
| jqlang | jq | >= 0 < 1.5+dfsg-1.1 | 1.5+dfsg-1.1 |
| msrc | cbl2_jq_1.5-6_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_1.0_arm | — | — |
| msrc | cbl_mariner_1.0_x64 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| msrc | cm1_jq_1.5-6_on_cbl_mariner_1.0 | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.07.8HIGHAV:N/AC:L/Au:N/C:N/I:N/A:C
osv7.5HIGH
vendor_debian7.5LOW
vendor_msrc7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
jq vulnerability
vendor_ubuntu·2021-03-15
CVE-2016-4074 jq vulnerability
Title: jq vulnerability
Summary: jq could be made to crash if it received specially crafted
input.
It was discovered that jq did not perform sufficient bounds checking,
resulting in unbounded resource consumption. An attacker could use this
vulnerability to cause a denial of service.
Instructions: In general, a standard system update will make all the necessary changes.
Microsoft
The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted JSON file. This issue has been fixed in jq 1.6_rc1-r0.
vendor_msrc·2016-05-10·CVSS 7.5
CVE-2016-4074 [HIGH] CWE-770 The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted JSON file. This issue has been fixed in jq 1.6_rc1-r0.
The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted JSON file. This issue has been fixed in jq 1.6_rc1-r0.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact to additional products is identified, we will update the
Red Hat
jq: stack exhaustion via jv_dump_term() function
vendor_redhat·2016-04-24·CVSS 7.5
CVE-2016-4074 [HIGH] CWE-400 jq: stack exhaustion via jv_dump_term() function
jq: stack exhaustion via jv_dump_term() function
The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted JSON file. This issue has been fixed in jq 1.6_rc1-r0.
Statement: Because this vulnerability requires that an unsuspecting user parses a specially crafted malicious JSON file, or that a service that does so accepts untrusted input, and because the consequences of this flaw are limited to exhaustion of the resources available to the user with whose privileges jq parses the malicious file, Red Hat assesses this vulnerability's impact as Low.
Package: jq (Red Hat Enterprise Linux 8) - Will not fix
Package: jq (Red Hat Enterprise Linux 9) - Not affected
Package: jq (Red Hat Enterprise Linux OpenSta
Debian
CVE-2016-4074: jq - The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of...
vendor_debian·2016·CVSS 7.5
CVE-2016-4074 [HIGH] CVE-2016-4074: jq - The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of...
The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted JSON file. This issue has been fixed in jq 1.6_rc1-r0.
Scope: local
bookworm: resolved (fixed in 1.5+dfsg-1.1)
bullseye: resolved (fixed in 1.5+dfsg-1.1)
forky: resolved (fixed in 1.5+dfsg-1.1)
sid: resolved (fixed in 1.5+dfsg-1.1)
trixie: resolved (fixed in 1.5+dfsg-1.1)
GHSA
GHSA-63w9-2p7c-mwwp: The jv_dump_term function in jq 1
ghsa_unreviewed·2022-05-13
CVE-2016-4074 [HIGH] CWE-770 GHSA-63w9-2p7c-mwwp: The jv_dump_term function in jq 1
The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted JSON file. This issue has been fixed in jq 1.6_rc1-r0.
OSV
CVE-2016-4074: The jv_dump_term function in jq 1
osv·2016-05-06·CVSS 7.5
CVE-2016-4074 [HIGH] CVE-2016-4074: The jv_dump_term function in jq 1
The jv_dump_term function in jq 1.5 allows remote attackers to cause a denial of service (stack consumption and application crash) via a crafted JSON file. This issue has been fixed in jq 1.6_rc1-r0.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2016-4074 jq: stack exhaustion via jv_dump_term() function [fedora-all]
bugzilla·2016-04-25·CVSS 7.5
CVE-2016-4074 [HIGH] CVE-2016-4074 jq: stack exhaustion via jv_dump_term() function [fedora-all]
CVE-2016-4074 jq: stack exhaustion via jv_dump_term() function [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE: this issue affects multiple supported versions of Fe
Bugzilla
CVE-2016-4074 jq: stack exhaustion via jv_dump_term() function
bugzilla·2016-04-25·CVSS 7.5
CVE-2016-4074 [HIGH] CVE-2016-4074 jq: stack exhaustion via jv_dump_term() function
CVE-2016-4074 jq: stack exhaustion via jv_dump_term() function
The following flaw was reported in jq:
A crash caused by stack exhaustion parsing a JSON was found. It affects, at least version 1.5 as well as the last git revision. Technical details and a reproducer are available here:
https://github.com/stedolan/jq/issues/1136
Note that this flaw can only be exloited in a service that accepts untrusted JSON files, as explained by MITRE:
http://seclists.org/oss-sec/2016/q2/141
Discussion:
Created jq tracking bugs for this issue:
Affects: fedora-all [bug 1329986]
Affects: epel-6 [bug 1329987]
Affects: epel-7 [bug 1329988]
Bugzilla
CVE-2016-4074 jq: stack exhaustion via jv_dump_term() function [epel-6]
bugzilla·2016-04-25·CVSS 7.5
CVE-2016-4074 [HIGH] CVE-2016-4074 jq: stack exhaustion via jv_dump_term() function [epel-6]
CVE-2016-4074 jq: stack exhaustion via jv_dump_term() function [epel-6]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
[bug automatically created by: add-tracking-bugs]
Discu
Bugzilla
CVE-2016-4074 jq: stack exhaustion via jv_dump_term() function [epel-7]
bugzilla·2016-04-25·CVSS 7.5
CVE-2016-4074 [HIGH] CVE-2016-4074 jq: stack exhaustion via jv_dump_term() function [epel-7]
CVE-2016-4074 jq: stack exhaustion via jv_dump_term() function [epel-7]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
[bug automatically created by: add-tracking-bugs]
Discu
http://www.openwall.com/lists/oss-security/2016/04/24/3http://www.openwall.com/lists/oss-security/2016/04/24/4https://github.com/NixOS/nixpkgs/pull/18908https://github.com/hashicorp/consul/issues/10263https://github.com/stedolan/jq/https://github.com/stedolan/jq/issues/1136http://www.openwall.com/lists/oss-security/2016/04/24/3http://www.openwall.com/lists/oss-security/2016/04/24/4https://github.com/NixOS/nixpkgs/pull/18908https://github.com/hashicorp/consul/issues/10263https://github.com/stedolan/jq/https://github.com/stedolan/jq/issues/1136
2016-05-06
Published