11 matches found
EUVD-2024-2567
Malicious code in bioql PyPI...
CVE-2024-43367
Boa is an embeddable and experimental Javascript engine written in Rust. Starting in version 0.16 and prior to version 0.19.0, a wrong assumption made when handling ECMAScript's AsyncGenerator operations can cause an uncaught exception on certain scripts. Boa's implementation of AsyncGenerator...
CVE-2024-43367
Boa is an embeddable and experimental Javascript engine written in Rust. Starting in version 0.16 and prior to version 0.19.0, a wrong assumption made when handling ECMAScript's AsyncGenerator operations can cause an uncaught exception on certain scripts. Boa's implementation of AsyncGenerator...
CVE-2024-43367
Boa (Rust) prior to version 0.19.0 had a bug in AsyncGenerator handling where state could incorrectly change while resolving a promise, leading to an uncaught exception. The issue arises when a code path transitions from a getter on the promise’s then property and violates Boa’s assumption that A...
CVE-2024-43367 Boa has an uncaught exception when transitioning the state of `AsyncGenerator` objects
Boa is an embeddable and experimental Javascript engine written in Rust. Starting in version 0.16 and prior to version 0.19.0, a wrong assumption made when handling ECMAScript's AsyncGenerator operations can cause an uncaught exception on certain scripts. Boa's implementation of AsyncGenerator...
CVE-2024-43367 Boa has an uncaught exception when transitioning the state of `AsyncGenerator` objects
Boa is an embeddable and experimental Javascript engine written in Rust. Starting in version 0.16 and prior to version 0.19.0, a wrong assumption made when handling ECMAScript's AsyncGenerator operations can cause an uncaught exception on certain scripts. Boa's implementation of AsyncGenerator...
CVE-2024-43367 Boa has an uncaught exception when transitioning the state of `AsyncGenerator` objects
Boa is an embeddable and experimental Javascript engine written in Rust. Starting in version 0.16 and prior to version 0.19.0, a wrong assumption made when handling ECMAScript's AsyncGenerator operations can cause an uncaught exception on certain scripts. Boa's implementation of AsyncGenerator...
CVE-2024-43357 JavaScript specification issue may lead to type confusion and pointer dereference in implementations
ECMA-262 is the language specification for the scripting language ECMAScript. A problem in the ECMAScript JavaScript specification of async generators, introduced by a May 2021 spec refactor, may lead to mis-implementation in a way that could present as a security vulnerability, such as type...
Boa has an uncaught exception when transitioning the state of `AsyncGenerator` objects
A wrong assumption made when handling ECMAScript's AsyncGenerator operations can cause an uncaught exception on certain scripts. Details Boa's implementation of AsyncGenerator makes the assumption that the state of an AsyncGenerator object cannot change while resolving a promise created by method...
GHSA-F67Q-WR6W-23JQ Boa has an uncaught exception when transitioning the state of `AsyncGenerator` objects
A wrong assumption made when handling ECMAScript's AsyncGenerator operations can cause an uncaught exception on certain scripts. Details Boa's implementation of AsyncGenerator makes the assumption that the state of an AsyncGenerator object cannot change while resolving a promise created by method...
PT-2024-30530 · Boa · Boa
Name of the Vulnerable Software and Affected Versions: Boa versions 0.16 through 0.19.0 Description: A wrong assumption in Boa's implementation of AsyncGenerator can cause an uncaught exception on certain scripts. This occurs because the state of an AsyncGenerator object is assumed not to change...