7036 matches found
CVE-2021-46514
CVE-2021-46514 affects Cesanta MJS v2.20.0. The issue arises from the assertion failure “ppos != NULL && mjs_is_number(*ppos)” in src/mjs_core.c, which can lead to a denial of service. Connected records corroborate the same root cause and version, indicating a vulnerability in the embedded JavaSc...
CVE-2021-46510
There is an Assertion s ownedstrings.buf + mjs-ownedstrings.len' failed at src/mjsgc.c in Cesanta MJS v2.20.0...
CVE-2021-46511
The CVE refers to Cesanta MJS (embedded JavaScript engine) v2.20.0 where an assertion in mjs_core.c (m->len >= sizeof(v)) can be triggered, leading to a denial of service. Public details consistently describe a DoS impact but do not document a specific vulnerable component beyond mjs_core.c...
CVE-2021-46510
The CVE-2021-46510 issue affects Cesanta MJS, an embedded JavaScript engine for C/C++. The vulnerability originates from an assertion in src/mjs_gc.c (s owned_strings.buf + mjs->owned_strings.len) in Cesanta MJS v2.20.0, which can lead to denial of service. Related sources (CNVD/CNNVD, OSV/NVD...
CVE-2021-46511
There is an Assertion m-len = sizeofv' failed at src/mjscore.c in Cesanta MJS v2.20.0...
CVE-2021-46508
There is an Assertion i partscnt' failed at src/mjsbcode.c in Cesanta MJS v2.20.0...
CVE-2021-46506
CVE-2021-46506 affects Jsish v3.5.0. The issue stems from an assertion failure in jsiValue.c (v->d.lval != v), which is described in the CVE description as a failure in Jsish v3.5.0. Several connected sources label the vulnerability as enabling a denial of service (DoS). The available document...
CVE-2021-46506
There is an Assertion 'v-d.lval != v' failed at src/jsiValue.c in Jsish v3.5.0...
CVE-2021-46504
CVE-2021-46504 affects Jsish v3.5.0. The vulnerability is an assertion failure (vp != resPtr) in jsiEval.c that can lead to a denial of service. Related documents explicitly reference DoS and Jsish v3.5.0, with CVSS data indicating local access and possible high impact on availability (CVE metric...
CVE-2021-46504
There is an Assertion 'vp != resPtr' failed at jsiEval.c in Jsish v3.5.0...
Jerryscript jmem-heap.c Denial of Service Vulnerability
JerryScript is a lightweight JavaScript engine JerryScript project . A denial of service vulnerability exists in Jerryscript version 3.0.0, which originates from an assertion at /jerry-core/jmem/jmem-heap.c, and can be exploited by an attacker to trigger a denial of service...
CLSA-2022-1643212135 Fix of CVE: CVE-2021-25214
CVE-2021-25214: Insufficient IXFR checks could lead to assertion failure...
openSUSE 15 Security Update : unbound (openSUSE-SU-2022:0176-1)
The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0176-1 advisory. - DISPUTED Unbound before 1.9.5 allows configuration injection in createunboundadservers.sh upon a successful man-in-the-middle attack...
CVE-2021-44994
There is an Assertion ''JERRYCONTEXT jmemheapallocatedsize == 0'' failed at /jerry-core/jmem/jmem-heap.c in Jerryscript 3.0.0...
CVE-2021-44992
There is an Assertion ''ecmaobjectistypedarray objp'' failed at /jerry-core/ecma/operations/ecma-typedarray-object.c in Jerryscript 3.0.0...
CVE-2021-44994
There is an Assertion ''JERRYCONTEXT jmemheapallocatedsize == 0'' failed at /jerry-core/jmem/jmem-heap.c in Jerryscript 3.0.0...
CVE-2021-44993
There is an Assertion ''ecmaisvalueboolean basevalue'' failed at /jerry-core/ecma/operations/ecma-get-put-value.c in Jerryscript 3.0.0...
CVE-2021-44992
There is an Assertion ''ecmaobjectistypedarray objp'' failed at /jerry-core/ecma/operations/ecma-typedarray-object.c in Jerryscript 3.0.0...
CVE-2021-44993
There is an Assertion ''ecmaisvalueboolean basevalue'' failed at /jerry-core/ecma/operations/ecma-get-put-value.c in Jerryscript 3.0.0...
Code injection
There is an Assertion ''ecmaisvalueboolean basevalue'' failed at /jerry-core/ecma/operations/ecma-get-put-value.c in Jerryscript 3.0.0...