Jerryscript 安全漏洞

JerryScript is a lightweight JavaScript engine from the Jerryscript project. A security vulnerability exists in Jerryscript, which stems from a component Scannerseek in jerry-core/parser/js/js-scanner-util.c contains a segmentation violation...

JerryScript 安全漏洞

JerryScript, a lightweight JavaScript engine from the JerryScript project, has a security vulnerability in JerryScript 3.0.0, which stems from /parser/js/js-scanner.cscannerscan statementend has an assertion contextp-stacktopuint8 == SCANSTACKTRYSTATEMENT || contextp-stacktopuint8 ==...

JerryScript Code Problem Vulnerability

JerryScript is a lightweight JavaScript engine . A code issue vulnerability exists in the parser/js/js-scanner.c file in JerryScript version 2.2.0. The vulnerability stems from an improperly designed or implemented code development process for a web-based system or product. No detailed...

openSUSE Security Update : phpMyAdmin (openSUSE-2016-1406)

This update to phpMyAdmin 4.4.15.9 fixes security issues and bugs. The following security issues were fixed : - Unsafe generation of $cfg'blowfishsecret' PMASA-2016-58 - phpMyAdmin's phpinfo functionality is removed PMASA-2016-59 - AllowRoot and allow/deny rule bypass with specially crafted...

openSUSE Security Update : flex / at / libbonobo / etc (openSUSE-2016-1155)

Various packages included vulnerable parsers generated by 'flex'. This update provides a fixed 'flex' package and also rebuilds of packages that might have security issues caused by the auto generated code. Flex itself was updated to fix a buffer overflow in the generated scanner bsc990856,...

FreeBSD : chromium -- multiple vulnerabilities (94c0ac4f-9388-11e1-b242-00262d5ed8ee)

Google Chrome Releases reports : 106413 High CVE-2011-3078: Use after free in floats handling. Credit to Google Chrome Security Team Marty Barbella and independent later discovery by miaubiz. 117627 Medium CVE-2011-3079: IPC validation failure. Credit to PinkiePie. 121726 Medium CVE-2011-3080: Ra...