3 matches found
CVE-2017-9250
The lexerprocesscharliteral function in jerry-core/parser/js/js-lexer.c in JerryScript 1.0 does not skip memory allocation for empty strings, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via malformed JavaScript source code, related to...
CVE-2017-9250
The lexerprocesscharliteral function in jerry-core/parser/js/js-lexer.c in JerryScript 1.0 does not skip memory allocation for empty strings, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via malformed JavaScript source code, related to...
CVE-2017-9250
CVE-2017-9250 affects JerryScript 1.0. The vulnerability lies in the lexer_process_char_literal function in jerry-core/parser/js/js-lexer.c, which does not skip memory allocation for empty strings. This can allow remote attackers to cause a denial of service (NULL pointer dereference and applicat...