[Git][security-tracker-team/security-tracker][master] CVE-2021-44988 & CVE-2021-4499{2,3,4} in iotjs - not affected
Neil Williams (@codehelp)
codehelp at debian.org
Tue Jan 25 14:24:29 GMT 2022
Neil Williams pushed to branch master at Debian Security Tracker / security-tracker
Commits:
71af2997 by Neil Williams at 2022-01-25T14:24:12+00:00
CVE-2021-44988 & CVE-2021-4499{2,3,4} in iotjs - not affected
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -9394,11 +9394,18 @@ CVE-2021-44996
CVE-2021-44995
RESERVED
CVE-2021-44994 (There is an Assertion ''JERRY_CONTEXT (jmem_heap_allocated_size) == 0' ...)
- TODO: check
+ - iotjs <not-affected> (Vulnerable code introduced later)
+ NOTE: https://github.com/jerryscript-project/jerryscript/issues/4894
+ NOTE: https://github.com/jerryscript-project/jerryscript/pull/4944
+ NOTE: https://github.com/jerryscript-project/jerryscript/issues/4895
CVE-2021-44993 (There is an Assertion ''ecma_is_value_boolean (base_value)'' failed at ...)
- TODO: check
+ - iotjs <not-affected> (Vulnerable code introduced later)
+ NOTE: https://github.com/jerryscript-project/jerryscript/issues/4876
+ NOTE: https://github.com/jerryscript-project/jerryscript/pull/4878
CVE-2021-44992 (There is an Assertion ''ecma_object_is_typedarray (obj_p)'' failed at ...)
- TODO: check
+ - iotjs <not-affected> (Vulnerable code introduced later)
+ NOTE: https://github.com/jerryscript-project/jerryscript/issues/4875
+ NOTE: https://github.com/jerryscript-project/jerryscript/pull/4879
CVE-2021-44991
RESERVED
CVE-2021-44990
@@ -9406,7 +9413,10 @@ CVE-2021-44990
CVE-2021-44989
RESERVED
CVE-2021-44988 (Jerryscript v3.0.0 and below was discovered to contain a stack overflo ...)
- TODO: check
+ - iotjs <not-affected> (Vulnerable code introduced later)
+ NOTE: https://github.com/jerryscript-project/jerryscript/issues/4891
+ NOTE: https://github.com/jerryscript-project/jerryscript/issues/4890
+ NOTE: https://github.com/jerryscript-project/jerryscript/pull/4899
CVE-2021-44987
RESERVED
CVE-2021-44986
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/71af2997137f21e5a4f11037adc731b5b241fc40
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/71af2997137f21e5a4f11037adc731b5b241fc40
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220125/b58e63f6/attachment.htm>
More information about the debian-security-tracker-commits
mailing list