1246 matches found
CVE-2021-26194
Removed by vendor...
CVE-2021-26194
JerryScript 2.4.0 contains a heap-use-after-free in ecma_is_lexical_environment (ecma-helpers.c). This is the concrete vulnerability described across multiple sources in the set. No remediation or patch details are provided in the connected documents; monitor for updates and vendor advisories for...
CVE-2021-26194
An issue was discovered in JerryScript 2.4.0. There is a heap-use-after-free in ecmaislexicalenvironment in the ecma-helpers.c file...
CVE-2020-23323
CVE-2020-23323 concerns a heap-buffer-overflow in JerryScript 2.2.0, specifically in re_parse_char_escape within re-parser.c. The connected sources confirm the affected component (JerryScript 2.2.0) and the vulnerable function/file, with no additional details on root cause beyond the overflow in ...
CVE-2020-23323
Removed by vendor...
CVE-2020-23323
There is a heap-buffer-overflow at re-parser.c in reparsecharescape in JerryScript 2.2.0...
CVE-2020-23322
There is an Assertion in 'contextp-token.type == LEXERRIGHTBRACE || contextp-token.type == LEXERASSIGN || contextp-token.type == LEXERCOMMA' in parserparseobjectinitializer in JerryScript 2.2.0...
CVE-2020-23322
CVE-2020-23322 concerns a vulnerability in JerryScript 2.2.0, specifically an assertion in parser_parse_object_initializer: context_p->token.type == LEXER_RIGHT_BRACE || context_p->token.type == LEXER_ASSIGN || context_p->token.type == LEXER_COMMA. The connected documents confirm the sam...
CVE-2020-23321
Removed by vendor...
CVE-2020-23321
There is a heap-buffer-overflow at lit-strings.c:431 in litreadcodeunitfromutf8 in JerryScript 2.2.0...
CVE-2020-23321
CVE-2020-23321 is a documented heap-buffer-overflow in JerryScript 2.2.0, triggered by lit_read_code_unit_from_utf8 (lit-strings.c:431). The vulnerability affects JerryScript 2.2.0 and is assigned a high/critical severity in public feeds (NVD CVSSv3.1: 9.8, NETWORK attack, no authentication, impa...
CVE-2020-23320
There is an Assertion in 'contextp-nextscannerinfop-type == SCANNERTYPEFUNCTION' in parserparsefunctionarguments in JerryScript 2.2.0...
CVE-2020-23320
CVE-2020-23320 concerns JerryScript 2.2.0, where an assertion failure occurs in parser_parse_function_arguments during processing of function arguments. The available documents (NVD/NASL/OSV/CNVD/Ubuntu/Debian typings) confirm the vulnerable component and function, but do not provide details on v...
CVE-2020-23320
Removed by vendor...
CVE-2020-23319
JerryScript 2.2.0 contains an assertion failure in parser_emit_cbc_backward_branch (file: js-parser-util.c) involving the condition '(flags >> CBC_STACK_ADJUST_SHIFT) >= CBC_STACK_ADJUST_BASE || (CBC_STACK_ADJUST_BASE - (flags >> CBC_STACK_ADJUST_SHIFT)) stack_depth'. The connected...
CVE-2020-23319
There is an Assertion in 'flags CBCSTACKADJUSTSHIFT = CBCSTACKADJUSTBASE || CBCSTACKADJUSTBASE - flags CBCSTACKADJUSTSHIFT stackdepth' in parseremitcbcbackwardbranch in JerryScript 2.2.0...
CVE-2020-23319
Removed by vendor...
CVE-2020-23314
There is an Assertion 'blockfound' failed at js-parser-statm.c:2003 parserparsetrystatementend in JerryScript 2.2.0...
CVE-2020-23314
Removed by vendor...
CVE-2020-23313
There is an Assertion 'scopestackp contextp-scopestackp' failed at js-scanner-util.c:2510 in scannerliteraliscreated in JerryScript 2.2.0...