1230 matches found
CVE-2021-46488
Jsish v3.5.0 contains a SEGV vulnerability exploitable through jsi_ArrayConcatCmd in src/jsiArray.c, leading to Denial of Service. Affected software: Jsish 3.5.0. Root cause: array concatenation path causes segmentation fault; impact: availability impact (DO S) as per CVSS metrics. No remediation...
CVE-2021-46488
Jsish v3.5.0 was discovered to contain a SEGV vulnerability via jsiArrayConcatCmd at src/jsiArray.c. This vulnerability can lead to a Denial of Service DoS...
CVE-2021-46486
CVE-2021-46486 affects Jsish v3.5.0. A SEGV vulnerability is triggered via jsi_ArraySpliceCmd in src/jsiArray.c, causing a Denial of Service. Public references in the provided documents confirm the vulnerable component and function, with no explicit exploit details or in-the-wild exploit status d...
CVE-2021-46102
From version 0.2.14 to 0.2.16 for Solana rBPF, function "relocate" in the file src/elf.rs has an integer overflow bug because the sym.stvalue is read directly from ELF file without checking. If the sym.stvalue is rather large, an integer overflow is triggered while calculating the variable "addr"...
Integer overflow
From version 0.2.14 to 0.2.16 for Solana rBPF, function "relocate" in the file src/elf.rs has an integer overflow bug because the sym.stvalue is read directly from ELF file without checking. If the sym.stvalue is rather large, an integer overflow is triggered while calculating the variable "addr"...
Jsish jsiClearStack Denial of Service Vulnerability
Jsish is a small JavaScript parser with a built-in database written in C. A denial of service vulnerability exists in Jsish v3.5.0, which stems from a failure to properly handle incoming error messages. An attacker can cause a denial of service DoS via jsiClearStack in src/jsiEval.c...
Jsish jsiValueObjDelete Denial of Service Vulnerability
Jsish is a small JavaScript parser with a built-in database written in C. A denial of service vulnerability exists in Jsish v3.5.0, which stems from a failure to properly handle incoming error messages and could lead to a denial of service DoS via a jsiValueObjDelete in src/jsiEval.c...
CVE-2021-46483
Jsish v3.5.0 was discovered to contain a heap buffer overflow via BooleanConstructor at src/jsiBool.c...
CVE-2021-46482
Jsish v3.5.0 was discovered to contain a heap buffer overflow via NumberConstructor at src/jsiNumber.c...
CVE-2021-46478
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiClearStack in src/jsiEval.c. This vulnerability can lead to a Denial of Service DoS...
CVE-2021-46478
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiClearStack in src/jsiEval.c. This vulnerability can lead to a Denial of Service DoS...
Heap overflow
Jsish v3.5.0 was discovered to contain a heap buffer overflow via BooleanConstructor at src/jsiBool.c...
Heap overflow
Jsish v3.5.0 was discovered to contain a heap buffer overflow via RegExpconstructor in src/jsiRegexp.c. This vulnerability can lead to a Denial of Service DoS...
Heap overflow
Jsish v3.5.0 was discovered to contain a heap buffer overflow via NumberConstructor at src/jsiNumber.c...
Heap overflow
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiValueObjDelete in src/jsiEval.c. This vulnerability can lead to a Denial of Service DoS...
Memory corruption
Jsish v3.5.0 was discovered to contain a memory leak via linenoise at src/linenoise.c...
Heap overflow
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiClearStack in src/jsiEval.c. This vulnerability can lead to a Denial of Service DoS...
Heap overflow
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiArraySliceCmd in src/jsiArray.c. This vulnerability can lead to a Denial of Service DoS...
CVE-2021-46483
Jsish v3.5.0 was discovered to contain a heap buffer overflow via BooleanConstructor at src/jsiBool.c...
CVE-2021-46482
Jsish v3.5.0 was discovered to contain a heap buffer overflow via NumberConstructor at src/jsiNumber.c...