1 matches found
OSV-2023-1372 Heap-use-after-free in JS_NewObjectFromShape
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65393 Crash type: Heap-use-after-free WRITE 8 Crash state: JSNewObjectFromShape jsparsetemplate jsparsepostfixexpr...