CVE-2021-45340
In Libsixel prior to and including v1.10.3, a NULL pointer dereference in the stb_image.h component of libsixel allows attackers to cause a denial of service (DOS) via a crafted PICT file.
Source: CVE-2021-45340
[월:] 2022년 01월
CVE-2022-0268
CVE-2022-0268
Cross-site Scripting (XSS) – Stored in Packagist getgrav/grav prior to 1.7.28.
Source: CVE-2022-0268
CVE-2022-0338
CVE-2022-23935
CVE-2022-23935
lib/Image/ExifTool.pm in ExifTool before 12.38 mishandles a $file =~ /|$/ check.
Source: CVE-2022-23935
CVE-2021-46481
CVE-2021-46481
Jsish v3.5.0 was discovered to contain a memory leak via linenoise at src/linenoise.c.
Source: CVE-2021-46481
CVE-2021-46483
CVE-2021-46483
Jsish v3.5.0 was discovered to contain a heap buffer overflow via BooleanConstructor at src/jsiBool.c.
Source: CVE-2021-46483
CVE-2021-46482
CVE-2021-46482
Jsish v3.5.0 was discovered to contain a heap buffer overflow via NumberConstructor at src/jsiNumber.c.
Source: CVE-2021-46482
CVE-2021-46477
CVE-2021-46477
Jsish v3.5.0 was discovered to contain a heap buffer overflow via RegExp_constructor in src/jsiRegexp.c. This vulnerability can lead to a Denial of Service (DoS).
Source: CVE-2021-46477
CVE-2021-44992
CVE-2021-44992
There is an Assertion ”ecma_object_is_typedarray (obj_p)” failed at /jerry-core/ecma/operations/ecma-typedarray-object.c in Jerryscript 3.0.0.
Source: CVE-2021-44992
CVE-2021-44988
CVE-2021-44988
Jerryscript v3.0.0 and below was discovered to contain a stack overflow via ecma_find_named_property in ecma-helpers.c.
Source: CVE-2021-44988