Question 1

What is CVE-2026-54679 — CVE-2026-54679?

Accepted Answer

jq is a command-line JSON processor. Prior to 1.8.2, on 32bit system, jvp_string_append has a chance of integer/multiple overflowing and then causing a massive buffer overrun. This vulnerability is fixed in 1.8.2.

Question 2

What is the authoritative source for CVE-2026-54679?

Accepted Answer

CVE-2026-54679 (CVE-2026-54679) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVE-2026-54679CVE-2026-54679

Description

Scoring