Описание
Buffer-overflow in jsdtoa.c in Artifex MuJS in versions 1.0.1 to 1.1.1. An integer overflow happens when js_strtod() reads in floating point exponent, which leads to a buffer overflow in the pointer *d.
Ссылки
- Patch
- Issue TrackingThird Party Advisory
- Patch
- Issue TrackingThird Party Advisory
- Issue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 1.0.1 (включая) до 1.1.1 (включая)
cpe:2.3:a:artifex:mujs:*:*:*:*:*:*:*:*
EPSS
Процентиль: 32%
0.00122
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-119
CWE-190
Связанные уязвимости
CVSS3: 9.8
ubuntu
почти 3 года назад
Buffer-overflow in jsdtoa.c in Artifex MuJS in versions 1.0.1 to 1.1.1. An integer overflow happens when js_strtod() reads in floating point exponent, which leads to a buffer overflow in the pointer *d.
CVSS3: 9.8
debian
почти 3 года назад
Buffer-overflow in jsdtoa.c in Artifex MuJS in versions 1.0.1 to 1.1.1 ...
CVSS3: 9.8
github
почти 3 года назад
Buffer-overflow in jsdtoa.c in Artifex MuJS in versions 1.0.1 to 1.1.1. An integer overflow happens when js_strtod() reads in floating point exponent, which leads to a buffer overflow in the pointer *d.
EPSS
Процентиль: 32%
0.00122
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-119
CWE-190