1. jq JSON Processor Vulnerability (CVE-2026-39979): Out-of-Bounds Read in libjq's Error Handler
A critical vulnerability in the widely-used `jq` command-line JSON processor exposes any application using its library to potential memory disclosure or crashes. The flaw, tracked as CVE-2026-39979, resides in the `jv_parse_sized()` API within `libjq`. This function is designed to safely parse JSON from a counted buffe...