[Git][security-tracker-team/security-tracker][master] Reference upstream commit CVE-2020-24344
Salvatore Bonaccorso
carnil at debian.org
Sun Dec 20 15:48:49 GMT 2020
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
236800bd by Salvatore Bonaccorso at 2020-12-20T16:47:22+01:00
Reference upstream commit CVE-2020-24344
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -20515,6 +20515,7 @@ CVE-2020-24345 (** DISPUTED ** JerryScript through 2.3.0 allows stack consumptio
CVE-2020-24344 (JerryScript through 2.3.0 has a (function({a=arguments}){const argumen ...)
- iotjs <unfixed>
NOTE: https://github.com/jerryscript-project/jerryscript/issues/3976
+ NOTE: https://github.com/jerryscript-project/jerryscript/commit/841d536fce1ce29267cdf0ea12be4026e1c35d3a
CVE-2020-24343 (Artifex MuJS through 1.0.7 has a use-after-free in jsrun.c because of ...)
NOT-FOR-US: MuJS
CVE-2020-24342 (Lua through 5.4.0 allows a stack redzone cross in luaO_pushvfstring be ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/236800bd9c8e2a3dfa8c12463cd57f3af38c08a5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/236800bd9c8e2a3dfa8c12463cd57f3af38c08a5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201220/55da75a6/attachment.html>
More information about the debian-security-tracker-commits
mailing list