Vulnerability Name:

CVE-2015-8863 (CCN-112589)

Assigned:2016-04-21
Published:2016-04-21
Updated:2018-10-30
Summary:Off-by-one error in the tokenadd function in jv_parse.c in jq allows remote attackers to cause a denial of service (crash) via a long JSON-encoded number, which triggers a heap-based buffer overflow.
CVSS v3 Severity:9.8 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.8 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
4.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-119
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2015-8863

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2016:1212

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2016:1214

Source: CCN
Type: RHSA-2016-1098
Moderate: jq security update

Source: REDHAT
Type: UNKNOWN
RHSA-2016:1098

Source: CCN
Type: RHSA-2016-1099
Moderate: jq security update

Source: REDHAT
Type: UNKNOWN
RHSA-2016:1099

Source: CCN
Type: RHSA-2016-1106
Moderate: jq security update

Source: REDHAT
Type: UNKNOWN
RHSA-2016:1106

Source: CCN
Type: oss-sec Mailing List, Sat, 23 Apr 2016 08:27:15 +0200
CVE Request: jq: heap buffer overflow in tokenadd() function

Source: CCN
Type: oss-sec Mailing List, Sat, 23 Apr 2016 09:43:42 -0400 (EDT)
Re: CVE Request: jq: heap buffer overflow in tokenadd() function

Source: MLIST
Type: UNKNOWN
[oss-security] 20160423 CVE Request: jq: heap buffer overflow in tokenadd() function

Source: MLIST
Type: UNKNOWN
[oss-security] 20160423 Re: CVE Request: jq: heap buffer overflow in tokenadd() function

Source: CCN
Type: Debian Bug report logs - 802231
jq: CVE-2015-8863: Heap buffer overflow in tokenadd()

Source: CONFIRM
Type: UNKNOWN
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=802231

Source: CCN
Type: Red Hat Bugzilla – Bug 1328747
jq: heap-buffer-overflow in tokenadd() function

Source: XF
Type: UNKNOWN
redhat-jq-cve20158863-dos(112589)

Source: CONFIRM
Type: Patch
https://github.com/stedolan/jq/commit/8eb1367ca44e772963e704a700ef72ae2e12babd

Source: CONFIRM
Type: UNKNOWN
https://github.com/stedolan/jq/issues/995

Source: GENTOO
Type: UNKNOWN
GLSA-201612-20

Vulnerable Configuration:Configuration 1:
  • cpe:/o:opensuse:leap:42.1:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

  • Configuration 2:
  • cpe:/a:jq_project:jq:*:*:*:*:*:*:*:* (Version <= 1.5)

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20158863
    V
    CVE-2015-8863
    2023-06-22
    oval:org.opensuse.security:def:7537
    P
    jq-1.6-3.3.1 on GA media (Moderate)
    2023-06-12
    oval:org.opensuse.security:def:683
    P
    Security update for crash (Important)
    2022-08-07
    oval:org.opensuse.security:def:94588
    P
    jq-1.6-3.3.1 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:2958
    P
    jq-1.6-3.3.1 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:87
    P
    jq-1.6-3.3.1 on GA media (Moderate)
    2022-06-13
    oval:org.opensuse.security:def:383
    P
    w3m-0.5.3+git20180125-1.17 on GA media (Moderate)
    2022-06-10
    oval:org.opensuse.security:def:112478
    P
    jq-1.5-3.3 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:69775
    P
    Security update for xorg-x11-server (Important)
    2021-12-20
    oval:org.opensuse.security:def:49124
    P
    Security update for containerd, docker, runc (Important)
    2021-10-12
    oval:org.opensuse.security:def:105975
    P
    jq-1.5-3.3 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:89627
    P
    jq-1.5-1.27 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:61472
    P
    jq-1.5-1.27 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:71213
    P
    jq-1.5-1.27 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:103282
    P
    jq-1.5-1.27 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:96592
    P
    jq-1.5-1.27 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:48132
    P
    libjavascriptcoregtk-4_0-18-2.24.4-2.47.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47457
    P
    pam-1.1.8-23.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47965
    P
    bluez-5.13-5.12.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47040
    P
    libksba8-1.3.0-23.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47605
    P
    evince-3.20.2-6.22.9 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:46904
    P
    chrony-2.3-3.110 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48030
    P
    grub2-2.02-12.15.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47233
    P
    cups-pk-helper-0.2.5-5.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47819
    P
    libz1-1.2.11-1.27 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:46905
    P
    cifs-utils-6.5-8.9 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48061
    P
    lcms2-2.7-9.7.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47365
    P
    libjson-c2-0.11-2.15 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47903
    P
    tcpdump-4.9.2-14.5.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:46919
    P
    curl-7.37.0-31.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:71846
    P
    jq-1.6-3.3.1 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:1016
    P
    jq-1.6-3.3.1 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:100863
    P
    jq-1.6-3.3.1 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:62105
    P
    jq-1.6-3.3.1 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:69670
    P
    Security update for spice (Important)
    2021-06-11
    oval:org.opensuse.security:def:48770
    P
    finch-2.11.0-12.5 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:70870
    P
    bash-4.4-7.14 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48824
    P
    bash-lang-4.3-82.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:70983
    P
    libjavascriptcoregtk-4_0-18-2.20.2-1.14 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:93739
    P
    (Moderate)
    2021-05-27
    oval:org.opensuse.security:def:64283
    P
    Security update for flac (Moderate)
    2020-12-24
    oval:org.opensuse.security:def:67530
    P
    Security update for openssl-1_0_0 (Important)
    2020-12-11
    oval:org.opensuse.security:def:66419
    P
    Security update for gcc7 (Moderate)
    2020-12-10
    oval:org.opensuse.security:def:100452
    P
    jq-1.6-3.3.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:116676
    P
    jq-1.6-3.3.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:61772
    P
    jq-1.6-3.3.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:71513
    P
    jq-1.6-3.3.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:107118
    P
    jq-1.6-3.3.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:73110
    P
    jq on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49070
    P
    coreutils on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:67630
    P
    jq on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:72992
    P
    Security update for libEMF (Important)
    2020-12-01
    oval:org.opensuse.security:def:64196
    P
    ruby2.5-rubygem-actionpack-5_1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:66327
    P
    Security update for the Linux Kernel (Important)
    2020-12-01
    oval:com.ubuntu.artful:def:20158863000
    V
    CVE-2015-8863 on Ubuntu 17.10 (artful) - medium.
    2016-05-06
    oval:com.ubuntu.bionic:def:20158863000
    V
    CVE-2015-8863 on Ubuntu 18.04 LTS (bionic) - medium.
    2016-05-06
    oval:com.ubuntu.bionic:def:201588630000000
    V
    CVE-2015-8863 on Ubuntu 18.04 LTS (bionic) - medium.
    2016-05-06
    oval:com.ubuntu.trusty:def:20158863000
    V
    CVE-2015-8863 on Ubuntu 14.04 LTS (trusty) - medium.
    2016-05-06
    oval:com.ubuntu.xenial:def:201588630000000
    V
    CVE-2015-8863 on Ubuntu 16.04 LTS (xenial) - medium.
    2016-05-06
    oval:com.ubuntu.xenial:def:20158863000
    V
    CVE-2015-8863 on Ubuntu 16.04 LTS (xenial) - medium.
    2016-05-06
    BACK
    opensuse leap 42.1
    opensuse opensuse 13.2
    jq_project jq *