3 matches found
CVE-2020-24345
JerryScript through 2.3.0 allows stack consumption via function anew new Proxya,JSON.parse"",a. NOTE: the vendor states that the problem is the lack of the --stack-limit option...
CVE-2020-24345
JerryScript through 2.3.0 allows stack consumption via function anew new Proxya,JSON.parse"",a. NOTE: the vendor states that the problem is the lack of the --stack-limit option...
CVE-2020-24345
CVE-2020-24345 affects JerryScript prior to 2.3.0. The issue allows stack consumption via the pattern: a(){new new Proxy(a,{})}JSON.parse("[]",a), with the vendor stating the root cause is the lack of the --stack-limit option. Impact is primarily stack depletion potentially causing a crash; no ex...