Divya Chellam 62b9edf47b jq: fix CVE-2025-9403 ...

A vulnerability was determined in jqlang jq up to 1.6. Impacted is the
function run_jq_tests of the file jq_test.c of the component JSON Parser.
Executing manipulation can lead to reachable assertion. The attack
requires local access. The exploit has been publicly disclosed and may be
utilized. Other versions might be affected as well.

Reference:
https://nvd.nist.gov/vuln/detail/CVE-2025-9403

Upstream-patch:
https://github.com/jqlang/jq/commit/a4d9d540103ff9a262e304329c277ec89b27e5f9

Signed-off-by: Divya Chellam <divya.chellam@windriver.com>
Signed-off-by: Anuj Mittal <anuj.mittal@intel.com>

2025-10-30 15:11:47 +08:00

..

jq

jq: fix CVE-2025-9403

2025-10-30 15:11:47 +08:00

jq_1.7.1.bb

jq: fix CVE-2025-9403

2025-10-30 15:11:47 +08:00