CVE-2024-33255

Removed by vendor...

CVE-2024-33255

Jerryscript commit cefd391 was discovered to contain an Assertion Failure via ECMASTRINGISREFEQUALSTOONE stringp in ecmafreestringlist...

PT-2024-25171 · Unknown · Jerryscript

Name of the Vulnerable Software and Affected Versions: Jerryscript version cefd391 Description: An Assertion Failure was discovered in Jerryscript via ECMA STRING IS REF EQUALS TO ONE string p in ecma free string list. Recommendations: For Jerryscript version cefd391, at the moment, there is no...

CVE-2024-33263

CVE-2024-33263 affects QuickJS; the issue stems from commit 3b45d15, where an Assertion Failure can occur via JS_FreeRuntime(JSRuntime *) in quickjs.c. Public sources (NVD, OSV, Red Hat, Ubuntu/NASL) consistently describe a crash that could lead to denial of service or potential code execution pa...

PT-2024-25176 · Quickjs +2 · Quickjs +2

Name of the Vulnerable Software and Affected Versions: QuickJS version 3b45d15 Description: The issue is related to an Assertion Failure via JS FreeRuntimeJSRuntime at quickjs.c. Recommendations: For QuickJS version 3b45d15, consider avoiding the use of JS FreeRuntimeJSRuntime until a patch is...

CVE-2024-33255

CVE-2024-33255 affects JerryScript. The issue is an assertion failure in ECMA_STRING_IS_REF_EQUALS_TO_ONE (string_p) within ecma_free_string_list, associated with commit cefd391 of JerryScript. Connected sources provide the exact vulnerable component and commit but do not specify affected product...

vyper's range(start, start + N) reverts for negative numbers

Summary When looping over a range of the form rangestart, start + N, if start is negative, the execution will always revert. Details This issue is caused by an incorrect assertion inserted by the code generation of the range stmt.parseForrange:...

GHSA-PPX5-Q359-PVWJ vyper's range(start, start + N) reverts for negative numbers

Summary When looping over a range of the form rangestart, start + N, if start is negative, the execution will always revert. Details This issue is caused by an incorrect assertion inserted by the code generation of the range stmt.parseForrange:...

CVE-2024-32481 vyper's range(start, start + N) reverts for negative numbers

Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. Starting in version 0.3.8 and prior to version 0.4.0b1, when looping over a range of the form rangestart, start + N, if start is negative, the execution will always revert. This issue is caused by an incorrect assertion...

Updated jasper packages fix security vulnerability

CVE-2024-31744: Fixed denial of service through assertion failure in jpcstreamlistremove...

Vyper 安全漏洞

Vyper is the Pythonic smart contract language for EVM. A security vulnerability exists in Vyper versions prior to 0.3.8 through 0.4.0b1, which stems from a false assertion issue in the stmt.parseForrange function...

SUSE-SU-2024:1396-1 Security update for jasper

This update for jasper fixes the following issues: - CVE-2024-31744: Fixed denial of service through assertion failure in jpcstreamlistremove bsc1223155...

PT-2024-5485 · Isc +12 · Bind 9 +12

Name of the Vulnerable Software and Affected Versions: BIND 9 versions 9.11.33-S1 through 9.11.37-S1 BIND 9 versions 9.16.13 through 9.16.50 BIND 9 versions 9.16.13-S1 through 9.16.50-S1 BIND 9 versions 9.18.0 through 9.18.27 BIND 9 versions 9.18.11-S1 through 9.18.27-S1 BIND 9 versions 9.19.0...

SUSE CVE-2024-31744

In Jasper 4.2.2, the jpcstreamlistremove function in src/libjasper/jpc/jpcdec.c:2407 has an assertion failure vulnerability, allowing attackers to cause a denial of service attack through a specific image file...

AZL-40000 CVE-2024-31744 affecting package jasper for versions less than 4.2.1-2

In Jasper 4.2.2, the jpcstreamlistremove function in src/libjasper/jpc/jpcdec.c:2407 has an assertion failure vulnerability, allowing attackers to cause a denial of service attack through a specific image file...

CVE-2024-31744

In Jasper 4.2.2, the jpcstreamlistremove function in src/libjasper/jpc/jpcdec.c:2407 has an assertion failure vulnerability, allowing attackers to cause a denial of service attack through a specific image file...

CVE-2024-31744

In Jasper 4.2.2, the jpcstreamlistremove function in src/libjasper/jpc/jpcdec.c:2407 has an assertion failure vulnerability, allowing attackers to cause a denial of service attack through a specific image file...

UBUNTU-CVE-2024-31744

In Jasper 4.2.2, the jpcstreamlistremove function in src/libjasper/jpc/jpcdec.c:2407 has an assertion failure vulnerability, allowing attackers to cause a denial of service attack through a specific image file...

Updated libreswan packages fix security vulnerability

CVE-2024-3652: The Libreswan Project was notified of an issue causing libreswan to restart when using IKEv1 without specifying an esp= line. When the peer requests AES-GMAC, libreswan's default proposal handler causes an assertion failure and crashes and restarts. IKEv2 connections are not affect...

CVE-2024-31744

CVE-2024-31744 affects Jasper 4.2.2. The jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an assertion failure leading to a denial-of-service condition via a crafted image file. Public exploitation details are not provided in the included documents. The entry includes a CVSS...