Monthly Archive: January 2022

Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_stack_size at mjs/src/mjs_core.c. This vulnerability can lead to a Denial of Service (DoS). Date published : 2022-01-27 https://github.com/cesanta/mjs/issues/201

There is an Assertion `mjs_stack_size(&mjs->scopes) >= scopes_len’ failed at src/mjs_exec.c in Cesanta MJS v2.20.0. Date published : 2022-01-27 https://github.com/cesanta/mjs/issues/186

There is an Assertion ‘ppos != NULL && mjs_is_number(*ppos)’ failed at src/mjs_core.c in Cesanta MJS v2.20.0. Date published : 2022-01-27 https://github.com/cesanta/mjs/issues/187

Cesanta MJS v2.20.0 was discovered to contain a global buffer overflow via mjs_mk_string at mjs/src/mjs_string.c. Date published : 2022-01-27 https://github.com/cesanta/mjs/issues/189

Cesanta MJS v2.20.0 was discovered to contain a SEGV vulnerability via mjs_apply at src/mjs_exec.c. This vulnerability can lead to a Denial of Service (DoS). Date published : 2022-01-27 https://github.com/cesanta/mjs/issues/202

There is an Assertion `m->len >= sizeof(v)’ failed at src/mjs_core.c in Cesanta MJS v2.20.0. Date published : 2022-01-27 https://github.com/cesanta/mjs/issues/183

There is an Assertion `s < mjs->owned_strings.buf + mjs->owned_strings.len’ failed at src/mjs_gc.c in Cesanta MJS v2.20.0. Date published : 2022-01-27 https://github.com/cesanta/mjs/issues/185

Cesanta MJS v2.20.0 was discovered to contain a stack overflow via snquote at mjs/src/mjs_json.c. Date published : 2022-01-27 https://github.com/cesanta/mjs/issues/200

There is an Assertion `i < parts_cnt' failed at src/mjs_bcode.c in Cesanta MJS v2.20.0. Date published : 2022-01-27 https://github.com/cesanta/mjs/issues/188

Jsish v3.5.0 was discovered to contain a stack overflow via Jsi_LogMsg at src/jsiUtils.c. Date published : 2022-01-27 https://github.com/pcmacdon/jsish/issues/54

There is an Assertion ‘v->d.lval != v’ failed at src/jsiValue.c in Jsish v3.5.0. Date published : 2022-01-27 https://github.com/pcmacdon/jsish/issues/52

Jsish v3.5.0 was discovered to contain a stack overflow via /usr/lib/x86_64-linux-gnu/libasan.so.4+0x5b1e5. Date published : 2022-01-27 https://github.com/pcmacdon/jsish/issues/53

There is an Assertion ‘vp != resPtr’ failed at jsiEval.c in Jsish v3.5.0. Date published : 2022-01-27 https://github.com/pcmacdon/jsish/issues/51

Jsish v3.5.0 was discovered to contain a heap-use-after-free via /usr/lib/x86_64-linux-gnu/libasan.so.4+0x79732. This vulnerability can lead to a Denial of Service (DoS). Date published : 2022-01-27 https://github.com/pcmacdon/jsish/issues/88