CVE-2026-39979 | jqlang jq jv_parse_sized length out-of-bounds (GHSA-2hhh-px8h-355p)

A vulnerability was found in jqlang jq. It has been rated as critical. The affected element is the function jv_parse_sized. Performing a manipulation of the argument length results in out-of-bounds read.

This vulnerability is identified as CVE-2026-39979. The attack can be initiated remotely. There is not any exploit available.

It is recommended to apply a patch to fix this issue.VulDB Recent EntriesRead More