6 matches found
UBUNTU-CVE-2023-31907
Jerryscript 3.0.0 was discovered to contain a heap-buffer-overflow via the component scannerliteraliscreated at /jerry-core/parser/js/js-scanner-util.c...
CVE-2021-46340
There is an Assertion 'contextp-stacktopuint8 == SCANSTACKTRYSTATEMENT || contextp-stacktopuint8 == SCANSTACKCATCHSTATEMENT' failed at /parser/js/js-scanner.cscannerscanstatementend in JerryScript 3.0.0...
CVE-2020-23313
There is an Assertion 'scopestackp contextp-scopestackp' failed at js-scanner-util.c:2510 in scannerliteraliscreated in JerryScript 2.2.0...
Debian Security Advisory DSA 2862-1 (chromium-browser - several vulnerabilities)
Several vulnerabilities have been discovered in the chromium web browser. CVE-2013-6641 Atte Kettunen discovered a use-after-free issue in Blink/Webkit form elements. CVE-2013-6643 Joao Lucas Melo Brasio discovered a Google account information disclosure issue related to the one-click sign-on...
Scientific Linux Security Update : firefox on SL4.x i386/x86_64
Mozilla Firefox is an open source Web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code as t...
FreeBSD : mozilla -- 'Wrapped' javascript: urls bypass security checks (a81746a1-c2c7-11d9-89f7-02061b08fc24)
A Mozilla Foundation Security Advisory reports : Some security checks intended to prevent script injection were incorrect and could be bypassed by wrapping a javascript: url in the view-source : pseudo-protocol. Michael Krax demonstrated that a variant of his favicon exploit could still execute...