Direct Vulnerabilities

Known vulnerabilities in the jq package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • M
Uncontrolled Recursion

<1.7.1-160000.4.1
  • M
Uncontrolled Recursion

<1.7.1-160000.4.1
  • H
CVE-2026-49839

<1.7.1-160000.4.1
  • H
CVE-2026-54679

<1.7.1-160000.4.1
  • M
Improper Neutralization of Null Byte or NUL Character

<1.7.1-160000.3.1
  • H
Integer Overflow or Wraparound

<1.7.1-160000.3.1
  • M
Improper Input Validation

<1.7.1-160000.3.1
  • M
Out-of-bounds Read

<1.7.1-160000.3.1
  • M
Out-of-bounds Write

<1.7.1-160000.3.1
  • H
Integer Overflow or Wraparound

<1.7.1-160000.3.1
  • M
Reversible One-Way Hash

<1.7.1-160000.3.1
  • M
Heap-based Buffer Overflow

<1.7.1-160000.3.1
  • M
Uncontrolled Recursion

<1.7.1-160000.3.1
  • M
Out-of-bounds Read

<1.7.1-160000.3.1
  • M
Uncontrolled Recursion

<1.7.1-160000.3.1