CVE-2025-48060 – jq Heap Buffer Overflow Vulnerability

May 21, 2025

CVE ID : CVE-2025-48060

Published : May 21, 2025, 6:15 p.m. | 2 hours, 26 minutes ago

Description : jq is a command-line JSON processor. In versions up to and including 1.7.1, a heap-buffer-overflow is present in function `jv_string_vfmt` in the jq_fuzz_execute harness from oss-fuzz. This crash happens on file jv.c, line 1456 `void* p = malloc(sz);`. As of time of publication, no patched versions are available.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-48063 – XWiki Remote Code Execution via Required Rights Bypass

Next Article CVE-2025-47291 – Containerd CRI Kubernetes Cgroup Bypass Denial of Service

Last week in AI dev tools: Cloudflare blocking AI crawlers by default, Perplexity Max subscription, and more (July 7, 2025)

Infragistics Launches Ultimate 25.1 With Major Updates to App Builder, Ignite UI

Design Guidelines For Better Notifications UX

10 Top React.js Development Service Providers For Your Next Project In 2026

A million customer conversations with AI agents yielded this surprising lesson

Bookworms: Don’t skip this Kindle Paperwhite Essentials bundle that’s on sale

My favorite “non-gaming” gaming accessory is down to its lowest price for Prime Day | XREAL’s AR glasses give you a virtual cinema screen for Xbox Cloud Gaming, Netflix, PC gaming handhelds, and more

I’ve been using this Alienware 240Hz gaming monitor for 2 years — less than $1 a day if I’d bought it with this Prime Day discount

Token Limit – Monitor token usage in AI context files

Token Limit – Monitor token usage in AI context files

Perficient Named a 2025 Best Place to Work in Orange County!

Perficient Recognized by Leading Analyst Firm for Automotive and Mobility Expertise

My favorite “non-gaming” gaming accessory is down to its lowest price for Prime Day | XREAL’s AR glasses give you a virtual cinema screen for Xbox Cloud Gaming, Netflix, PC gaming handhelds, and more

My favorite “non-gaming” gaming accessory is down to its lowest price for Prime Day | XREAL’s AR glasses give you a virtual cinema screen for Xbox Cloud Gaming, Netflix, PC gaming handhelds, and more

I’ve been using this Alienware 240Hz gaming monitor for 2 years — less than $1 a day if I’d bought it with this Prime Day discount

Final Fantasy IX Remake possibly cancelled according to latest rumors — Which may be the saddest way to celebrate this legendary game’s 25th anniversary

CVE-2025-48060 – jq Heap Buffer Overflow Vulnerability

CVE-2025-42959 – Apache HMAC Reuse Replay Attack

CVE-2025-42953 – SAP Netweaver Privilege Escalation Vulnerability

Building Smarter APIs with OpenAPI, AWS Bedrock & SageMaker Studio in Drupal 10

CVE-2025-40650 – Clickedu IDOR Disclosure

NVIDIA’s drivers are causing big problems for DOOM: The Dark Ages, but some fixes are available

Multi-account support for Amazon SageMaker HyperPod task governance

Mozilla Say Google Search Deal Vital to Firefox’s Survival

Phone satisfaction falls to 10-year low – and AI is only partly to blame

CVE-2025-6929 – PHPGurukul Zoo Management System SQL Injection Vulnerability

Windows 11 KB5060829 issues affect some, but still a good update for games

CVE-2025-48060 – jq Heap Buffer Overflow Vulnerability

Related Posts