CVE-2023-31922

CVE-2023-31922 affects QuickJS, specifically the js_proxy_isArray path in quickjs.c, where a stack overflow can trigger a crash. The issue is tied to commit 2788d71. Public docs indicate a DoS/crash impact but do not provide exploitation details. Remediation mentioned in the sources includes upgr...

CVE-2023-31922

QuickJS commit 2788d71 was discovered to contain a stack-overflow via the component jsproxyisArray at quickjs.c...

PT-2022-37180 · Git +1 · Quickjs

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read crash. Technical details about the crash include the functions find jump target, resolve labels, and ...

CVE-2020-22876

Buffer Overflow vulnerability in quickjs.c in QuickJS, allows remote attackers to cause denial of service. This issue is resolved in the 2020-07-05 release...

Buffer overflow

Buffer Overflow vulnerability in quickjs.c in QuickJS, allows remote attackers to cause denial of service. This issue is resolved in the 2020-07-05 release...

CVE-2020-22876

Buffer Overflow vulnerability in quickjs.c in QuickJS, allows remote attackers to cause denial of service. This issue is resolved in the 2020-07-05 release...

CVE-2020-22876

CVE-2020-22876 relates to a buffer overflow in QuickJS (source: quickjs.c). The vulnerability allows remote denial of service via a crafted input and is mitigated by a fix released on 2020-07-05. Affected component is the QuickJS engine; root cause is a buffer overflow in quickjs.c leading to mem...

CVE-2020-22876

Buffer Overflow vulnerability in quickjs.c in QuickJS, allows remote attackers to cause denial of service. This issue is resolved in the 2020-07-05 release...

Stack Overflow Vulnerability in QuickJS

QuickJS is a small and embeddable Javascript engine , it supports the ES2020 specification , including modules , asynchronous generators and proxies . QuickJS suffers from a stack overflow vulnerability that can be exploited to cause a program crash...

quickjs:fuzz_compile: Heap-buffer-overflow in set_object_name

Detailed Report: https://oss-fuzz.com/testcase?key=6040126542315520 Project: quickjs Fuzzing Engine: afl Fuzz Target: fuzzcompile Job Type: aflasanquickjs Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x6160009e00a5 Crash State: setobjectname jsparseassignexpr...

quickjs:fuzz_compile: Heap-use-after-free in JS_DefineProperty

Detailed Report: https://oss-fuzz.com/testcase?key=5658108885204992 Project: quickjs Fuzzing Engine: afl Fuzz Target: fuzzcompile Job Type: aflasanquickjs Platform Id: linux Crash Type: Heap-use-after-free READ 8 Crash Address: 0x60900025f8e8 Crash State: JSDefineProperty buildbacktrace...

quickjs:fuzz_compile: Heap-buffer-overflow in js_parse_postfix_expr

Detailed Report: https://oss-fuzz.com/testcase?key=6261593842384896 Project: quickjs Fuzzing Engine: libFuzzer Fuzz Target: fuzzcompile Job Type: libfuzzerasanquickjs Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x62c00003fd82 Crash State: jsparsepostfixexpr...

quickjs:fuzz_eval: Stack-buffer-overflow in get_class_atom

Project: https://github.com/horhof/quickjs.git https://github.com/bellard/quickjs.git Detailed Report: https://oss-fuzz.com/testcase?key=5071407886368768 Project: quickjs Fuzzing Engine: afl Fuzz Target: fuzzeval Job Type: aflasanquickjs Platform Id: linux Crash Type: Stack-buffer-overflow WRITE ...

quickjs:fuzz_compile: Heap-use-after-free in JS_ReadObjectRec

Project: https://github.com/horhof/quickjs.git Detailed Report: https://oss-fuzz.com/testcase?key=5676100190732288 Project: quickjs Fuzzing Engine: honggfuzz Fuzz Target: fuzzcompile Job Type: honggfuzzasanquickjs Platform Id: linux Crash Type: Heap-use-after-free READ 4 Crash Address:...

quickjs:fuzz_regexp: Heap-buffer-overflow in re_parse_disjunction

Project: https://github.com/horhof/quickjs.git Detailed Report: https://oss-fuzz.com/testcase?key=5175204159684608 Project: quickjs Fuzzing Engine: libFuzzer Fuzz Target: fuzzregexp Job Type: libfuzzerasanquickjs Platform Id: linux Crash Type: Heap-buffer-overflow WRITE Crash Address:...

quickjs:fuzz_compile: Heap-use-after-free in JS_ReadObjectRec

Project: https://github.com/horhof/quickjs.git Detailed Report: https://oss-fuzz.com/testcase?key=4863930045562880 Project: quickjs Fuzzing Engine: honggfuzz Fuzz Target: fuzzcompile Job Type: honggfuzzasanquickjs Platform Id: linux Crash Type: Heap-use-after-free READ 4 Crash Address:...

quickjs:fuzz_compile: Crash in js_parse_source_element

Project: https://github.com/horhof/quickjs.git Detailed Report: https://oss-fuzz.com/testcase?key=5192125542301696 Project: quickjs Fuzzing Engine: afl Fuzz Target: fuzzcompile Job Type: aflasanquickjs Platform Id: linux Crash Type: UNKNOWN READ Crash Address: 0x620000050780 Crash State:...

quickjs:fuzz_regexp: Heap-buffer-overflow in re_parse_disjunction

Detailed Report: https://oss-fuzz.com/testcase?key=5730680467357696 Project: quickjs Fuzzing Engine: honggfuzz Fuzz Target: fuzzregexp Job Type: honggfuzzasanquickjs Platform Id: linux Crash Type: Heap-buffer-overflow WRITE Crash Address: 0x7f559109dea8 Crash State: reparsedisjunction reparseterm...

quickjs:fuzz_regexp: Stack-buffer-overflow in re_parse_term

Project: https://github.com/horhof/quickjs.git https://github.com/bellard/quickjs.git Detailed Report: https://oss-fuzz.com/testcase?key=5682808761876480 Project: quickjs Fuzzing Engine: afl Fuzz Target: fuzzregexp Job Type: aflasanquickjs Platform Id: linux Crash Type: Stack-buffer-overflow READ...