CVE-2021-41682: Use After Free

June 20, 2022 (updated June 28, 2022)

There is a heap-use-after-free at ecma-helpers-string.c:1940 in ecma_compare_ecma_non_direct_strings in JerryScript 2.4.0

References

github.com/jerryscript-project/jerryscript/issues/4747
nvd.nist.gov/vuln/detail/CVE-2021-41682

Detect and mitigate CVE-2021-41682 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →