[Git][security-tracker-team/security-tracker][master] Add iotjs information for buster
Neil Williams (@codehelp)
codehelp at debian.org
Mon Jan 24 12:22:00 GMT 2022
Neil Williams pushed to branch master at Debian Security Tracker / security-tracker
Commits:
daf5f9fb by Neil Williams at 2022-01-24T12:20:50+00:00
Add iotjs information for buster
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1491,10 +1491,12 @@ CVE-2021-46350 (There is an Assertion 'ecma_is_value_object (value)' failed at j
NOTE: https://github.com/jerryscript-project/jerryscript/issues/4936
CVE-2021-46349 (There is an Assertion 'type == ECMA_OBJECT_TYPE_GENERAL || type == ECM ...)
- iotjs <unfixed> (bug #1004288)
+ [buster] - iotjs <not-affected> (Vulnerable code introduced later)
NOTE: https://github.com/jerryscript-project/jerryscript/pull/4954
NOTE: https://github.com/jerryscript-project/jerryscript/issues/4937
CVE-2021-46348 (There is an Assertion 'ECMA_STRING_IS_REF_EQUALS_TO_ONE (string_p)' fa ...)
- iotjs <unfixed> (bug #1004288)
+ [buster] - iotjs <not-affected> (Vulnerable code introduced later)
NOTE: https://github.com/jerryscript-project/jerryscript/pull/4961
NOTE: https://github.com/jerryscript-project/jerryscript/issues/4941
CVE-2021-46347 (There is an Assertion 'ecma_object_check_class_name_is_object (obj_p)' ...)
@@ -1503,6 +1505,7 @@ CVE-2021-46347 (There is an Assertion 'ecma_object_check_class_name_is_object (o
NOTE: https://github.com/jerryscript-project/jerryscript/issues/4938
CVE-2021-46346 (There is an Assertion 'local_tza == ecma_date_local_time_zone_adjustme ...)
- iotjs <unfixed> (bug #1004288)
+ [buster] - iotjs <unfixed>
NOTE: https://github.com/jerryscript-project/jerryscript/pull/4955
NOTE: https://github.com/jerryscript-project/jerryscript/issues/4939
CVE-2021-46345 (There is an Assertion 'cesu8_cursor_p == cesu8_end_p' failed at /jerry ...)
@@ -1525,6 +1528,7 @@ CVE-2021-46341
RESERVED
CVE-2021-46340 (There is an Assertion 'context_p->stack_top_uint8 == SCAN_STACK_TRY ...)
- iotjs <unfixed> (bug #1004288)
+ [buster] - iotjs <not-affected> (Vulnerable code introduced later)
NOTE: https://github.com/jerryscript-project/jerryscript/pull/4964
NOTE: https://github.com/jerryscript-project/jerryscript/issues/4924
CVE-2021-46339 (There is an Assertion 'lit_is_valid_cesu8_string (string_p, string_siz ...)
@@ -1532,6 +1536,7 @@ CVE-2021-46339 (There is an Assertion 'lit_is_valid_cesu8_string (string_p, stri
NOTE: https://github.com/jerryscript-project/jerryscript/issues/4935
CVE-2021-46338 (There is an Assertion 'ecma_is_lexical_environment (object_p)' failed ...)
- iotjs <unfixed> (bug #1004288)
+ [buster] - iotjs <unfixed>
NOTE: https://github.com/jerryscript-project/jerryscript/pull/4943
NOTE: https://github.com/jerryscript-project/jerryscript/issues/4933
NOTE: https://github.com/jerryscript-project/jerryscript/issues/4900
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/daf5f9fbd8c714f512d170cfeb2aeb3515a0df8d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/daf5f9fbd8c714f512d170cfeb2aeb3515a0df8d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220124/43127740/attachment.htm>
More information about the debian-security-tracker-commits
mailing list