1216 matches found
CVE-2018-1000636
CVE-2018-1000636 affects JerryScript. The issue is a NULL pointer dereference caused by passing NULL to memcpy in the file jerry-core/ecma/builtin-objects/typedarray/ecma-builtin-typedarray-prototype.c:598, which can lead to a crash (segmentation fault) in jerry-core/jmem/jmem-heap.c:463. The vul...
CVE-2018-1000636
Removed by vendor...
JerryScript Heap Buffer Over Read Vulnerability
JerryScript is a lightweight JavaScript engine designed to run on very constrained devices such as microcontrollers. A heap buffer overread vulnerability exists in the litreadcodeunitfromhex function in JerryScript 1.0 related to reparsecharclass in parser/regexp/re-parser.c. An attacker can...
JerryScript heap buffer overread vulnerability (CNVD-2018-15379)
JerryScript is a lightweight JavaScript engine designed to run on very constrained devices such as microcontrollers. A heap buffer over-read vulnerability exists in the litreadcodeunitfromutf8 function in JerryScript 1.0 related to reparsecharclass in parser/regexp/re-parser.c. An attacker can...
UBUNTU-CVE-2018-11419
An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the litreadcodeunitfromhex function via a RegExp"\u0" payload, related to reparsecharclass in parser/regexp/re-parser.c...
Heap overflow
An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the litreadcodeunitfromutf8 function via a RegExp"\u0020" payload, related to reparsecharclass in parser/regexp/re-parser.c...
UBUNTU-CVE-2018-11418
An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the litreadcodeunitfromutf8 function via a RegExp"\u0020" payload, related to reparsecharclass in parser/regexp/re-parser.c...
CVE-2018-11418
An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the litreadcodeunitfromutf8 function via a RegExp"\u0020" payload, related to reparsecharclass in parser/regexp/re-parser.c...
CVE-2018-11418
An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the litreadcodeunitfromutf8 function via a RegExp"\u0020" payload, related to reparsecharclass in parser/regexp/re-parser.c...
CVE-2018-11419
An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the litreadcodeunitfromhex function via a RegExp"\u0" payload, related to reparsecharclass in parser/regexp/re-parser.c...
CVE-2018-11419
An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the litreadcodeunitfromhex function via a RegExp"\u0" payload, related to reparsecharclass in parser/regexp/re-parser.c...
CVE-2018-11418
An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the litreadcodeunitfromutf8 function via a RegExp"\u0020" payload, related to reparsecharclass in parser/regexp/re-parser.c...
CVE-2018-11419
An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the litreadcodeunitfromhex function via a RegExp"\u0" payload, related to reparsecharclass in parser/regexp/re-parser.c...
CVE-2018-11418
An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the litreadcodeunitfromutf8 function via a RegExp"\u0020" payload, related to reparsecharclass in parser/regexp/re-parser.c...
CVE-2018-11419
CVE-2018-11419 affects JerryScript 1.0, with a heap-based buffer over-read in lit_read_code_unit_from_hex triggered by a RegExp("[\u0") payload and related to re_parse_char_class in parser/regexp/re-parser.c. The vulnerability details are documented across multiple sources in the connected set an...
CVE-2018-11418
CVE-2018-11418 affects JerryScript 1.0. There is a heap-based buffer over-read in the function lit_read_code_unit_from_utf8, triggered by a RegExp("[\u0020") payload and related to re_parse_char_class in parser/regexp/re-parser.c. The issue is described across multiple sources as a vulnerability ...
CVE-2018-11418
Removed by vendor...
CVE-2018-11419
Removed by vendor...
JerryScript Buffer Overflow Vulnerability
JerryScript is a lightweight JavaScript engine . The 'litreadcodeunitfromhex' function in the file lit/lit-char-helpers.c in JerryScript has a heap buffer out-of-bounds read. An attacker could exploit this vulnerability to cause a buffer overflow...
CVE-2017-18212
An issue was discovered in JerryScript 1.0. There is a heap-based buffer over-read in the litreadcodeunitfromhex function in lit/lit-char-helpers.c via a RegExp"\x0"; payload...