CVE-2021-46322

Опубликовано: 20 янв. 2022

Источник: debian

EPSS Низкий

Описание

Duktape v2.99.99 was discovered to contain a SEGV vulnerability via the component duk_push_tval in duktape/duk_api_stack.c.

Пакет	Статус	Версия исправления	Релиз	Тип
duktape	fixed	2.7.0-1		package
duktape	fixed	2.5.0-2+deb11u1	bullseye	package

https://github.com/svaarala/duktape/issues/2448
https://github.com/svaarala/duktape/pull/2451
https://github.com/svaarala/duktape/commit/fc75060165a011ff5ec43bfebea0c37a3d1baca1
https://github.com/svaarala/duktape/commit/a851d8a5687356b1d6ad0f8f39d6226947f17b27 (v2.7.0)

EPSS

Процентиль: 27%

0.00095

Низкий

CVE-2021-46322

CVSS3: 5.5

ubuntu

около 4 лет назад

Duktape v2.99.99 was discovered to contain a SEGV vulnerability via the component duk_push_tval in duktape/duk_api_stack.c.

CVE-2021-46322

CVSS3: 5.5

nvd

около 4 лет назад

Duktape v2.99.99 was discovered to contain a SEGV vulnerability via the component duk_push_tval in duktape/duk_api_stack.c.

GHSA-hmgv-4jwm-xc9x

CVSS3: 5.5

github

около 4 лет назад

Duktape v2.99.99 was discovered to contain a SEGV vulnerability via the component duk_push_tval in duktape/duk_api_stack.c.

EPSS

Процентиль: 27%

0.00095

Низкий