| Bug | buster | bullseye | sid | Description |
|---|
| CVE-2022-22895 | fixed | vulnerable (no DSA) | vulnerable | Jerryscript 3.0.0 was discovered to contain a heap-buffer-overflow via ... |
| CVE-2022-22894 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | Jerryscript 3.0.0 was discovered to contain a stack overflow via ecma_ ... |
| CVE-2022-22893 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | Jerryscript 3.0.0 was discovered to contain a stack overflow via vm_lo ... |
| CVE-2022-22892 | fixed | vulnerable (no DSA) | vulnerable | There is an Assertion 'ecma_is_value_undefined (value) || ecma_is_valu ... |
| CVE-2022-22891 | fixed | vulnerable (no DSA) | vulnerable | Jerryscript 3.0.0 was discovered to contain a SEGV vulnerability via e ... |
| CVE-2022-22890 | fixed | vulnerable (no DSA) | vulnerable | There is an Assertion 'arguments_type != SCANNER_ARGUMENTS_PRESENT &am ... |
| CVE-2022-22888 | fixed | vulnerable (no DSA) | vulnerable | Jerryscript 3.0.0 was discovered to contain a stack overflow via ecma_ ... |
| CVE-2021-46349 | fixed | vulnerable (no DSA) | vulnerable | There is an Assertion 'type == ECMA_OBJECT_TYPE_GENERAL || type == ECM ... |
| CVE-2021-46348 | fixed | vulnerable (no DSA) | vulnerable | There is an Assertion 'ECMA_STRING_IS_REF_EQUALS_TO_ONE (string_p)' fa ... |
| CVE-2021-46346 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is an Assertion 'local_tza == ecma_date_local_time_zone_adjustme ... |
| CVE-2021-46340 | fixed | vulnerable (no DSA) | vulnerable | There is an Assertion 'context_p->stack_top_uint8 == SCAN_STACK_TRY ... |
| CVE-2021-46339 | undetermined | undetermined | undetermined | There is an Assertion 'lit_is_valid_cesu8_string (string_p, string_siz ... |
| CVE-2021-46338 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is an Assertion 'ecma_is_lexical_environment (object_p)' failed ... |
| CVE-2021-46170 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | An issue was discovered in JerryScript commit a6ab5e9. There is an Use ... |
| CVE-2021-43453 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | A Heap-based Buffer Overflow vulnerability exists in JerryScript 2.4.0 ... |
| CVE-2021-42863 | fixed | vulnerable | vulnerable | A buffer overflow in ecma_builtin_typedarray_prototype_filter() in Jer ... |
| CVE-2021-41959 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | JerryScript Git version 14ff5bf does not sufficiently track and releas ... |
| CVE-2021-41751 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | Buffer overflow vulnerability in file ecma-builtin-array-prototype.c:9 ... |
| CVE-2021-41683 | undetermined | undetermined | undetermined | There is a stack-overflow at ecma-helpers.c:326 in ecma_get_lex_env_ty ... |
| CVE-2021-41682 | vulnerable | vulnerable | vulnerable | There is a heap-use-after-free at ecma-helpers-string.c:1940 in ecma_c ... |
| CVE-2021-26199 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | An issue was discovered in JerryScript 2.4.0. There is a heap-use-afte ... |
| CVE-2021-26198 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | An issue was discovered in JerryScript 2.4.0. There is a SEVG in ecma_ ... |
| CVE-2021-26197 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | An issue was discovered in JerryScript 2.4.0. There is a SEGV in main_ ... |
| CVE-2021-26195 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | An issue was discovered in JerryScript 2.4.0. There is a heap-buffer-o ... |
| CVE-2021-26194 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | An issue was discovered in JerryScript 2.4.0. There is a heap-use-afte ... |
| CVE-2020-24344 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | JerryScript through 2.3.0 has a (function({a=arguments}){const argumen ... |
| CVE-2020-23323 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is a heap-buffer-overflow at re-parser.c in re_parse_char_escape ... |
| CVE-2020-23322 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is an Assertion in 'context_p->token.type == LEXER_RIGHT_BRAC ... |
| CVE-2020-23321 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is a heap-buffer-overflow at lit-strings.c:431 in lit_read_code_ ... |
| CVE-2020-23320 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is an Assertion in 'context_p->next_scanner_info_p->type = ... |
| CVE-2020-23319 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is an Assertion in '(flags >> CBC_STACK_ADJUST_SHIFT) > ... |
| CVE-2020-23314 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is an Assertion 'block_found' failed at js-parser-statm.c:2003 p ... |
| CVE-2020-23313 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is an Assertion 'scope_stack_p > context_p->scope_stack_p' ... |
| CVE-2020-23312 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is an Assertion 'context.status_flags & PARSER_SCANNING_SUCC ... |
| CVE-2020-23311 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is an Assertion 'context_p->token.type == LEXER_RIGHT_BRACE | ... |
| CVE-2020-23310 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is an Assertion 'context_p->next_scanner_info_p->type == S ... |
| CVE-2020-23309 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is an Assertion 'context_p->stack_depth == context_p->cont ... |
| CVE-2020-23308 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is an Assertion 'context_p->stack_top_uint8 == LEXER_EXPRESSI ... |
| CVE-2020-23306 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is a stack-overflow at ecma-regexp-object.c:535 in ecma_regexp_m ... |
| CVE-2020-23303 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is a heap-buffer-overflow at jmem-poolman.c:165 in jmem_pools_co ... |
| CVE-2020-23302 | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable | There is a heap-use-after-free at ecma-helpers-string.c:772 in ecma_re ... |
| CVE-2020-13649 | vulnerable (no DSA) | fixed | fixed | parser/js/js-scanner.c in JerryScript 2.2.0 mishandles errors during c ... |
| CVE-2019-1010176 | vulnerable (no DSA) | fixed | fixed | JerryScript commit 4e58ccf68070671e1fff5cd6673f0c1d5b80b166 is affecte ... |
| CVE-2018-1000636 | vulnerable (no DSA) | fixed | fixed | JerryScript version Tested on commit f86d7459d195c8ba58479d1861b0cc726 ... |
| CVE-2018-11419 | vulnerable (no DSA) | fixed | fixed | An issue was discovered in JerryScript 1.0. There is a heap-based buff ... |
| CVE-2018-11418 | vulnerable (no DSA) | fixed | fixed | An issue was discovered in JerryScript 1.0. There is a heap-based buff ... |
| CVE-2017-18212 | vulnerable (no DSA) | fixed | fixed | An issue was discovered in JerryScript 1.0. There is a heap-based buff ... |
| CVE-2017-14749 | vulnerable (no DSA) | fixed | fixed | JerryScript 1.0 allows remote attackers to cause a denial of service ( ... |
| Bug | Description |
|---|
| CVE-2022-22901 | There is an Assertion in 'context_p->next_scanner_info_p->type = ... |
| CVE-2021-46351 | There is an Assertion 'local_tza == ecma_date_local_time_zone_adjustme ... |
| CVE-2021-46350 | There is an Assertion 'ecma_is_value_object (value)' failed at jerrysc ... |
| CVE-2021-46347 | There is an Assertion 'ecma_object_check_class_name_is_object (obj_p)' ... |
| CVE-2021-46345 | There is an Assertion 'cesu8_cursor_p == cesu8_end_p' failed at /jerry ... |
| CVE-2021-46344 | There is an Assertion 'flags & PARSER_PATTERN_HAS_REST_ELEMENT' fa ... |
| CVE-2021-46343 | There is an Assertion 'context_p->token.type == LEXER_LITERAL' fail ... |
| CVE-2021-46342 | There is an Assertion 'ecma_is_lexical_environment (obj_p) || !ecma_op ... |
| CVE-2021-46337 | There is an Assertion 'page_p != NULL' failed at /parser/js/js-parser- ... |
| CVE-2021-46336 | There is an Assertion 'opts & PARSER_CLASS_LITERAL_CTOR_PRESENT' f ... |
| CVE-2021-44994 | There is an Assertion ''JERRY_CONTEXT (jmem_heap_allocated_size) == 0' ... |
| CVE-2021-44993 | There is an Assertion ''ecma_is_value_boolean (base_value)'' failed at ... |
| CVE-2021-44992 | There is an Assertion ''ecma_object_is_typedarray (obj_p)'' failed at ... |
| CVE-2021-44988 | Jerryscript v3.0.0 and below was discovered to contain a stack overflo ... |
| CVE-2020-14163 | An issue was discovered in ecma/operations/ecma-container-object.c in ... |
| CVE-2020-13991 | vm/opcodes.c in JerryScript 2.2.0 allows attackers to hijack the flow ... |
| CVE-2020-13623 | JerryScript 2.2.0 allows attackers to cause a denial of service (stack ... |
| CVE-2020-13622 | JerryScript 2.2.0 allows attackers to cause a denial of service (asser ... |