Advisory Database
  • Advisories
  • Dependency Scanning
  1. conan
  2. ›
  3. jerryscript
  4. ›
  5. CVE-2021-41752

CVE-2021-41752: Out-of-bounds Write

April 5, 2022 (updated August 8, 2023)

Stack overflow vulnerability in Jerryscript before commit e1ce7dd7271288be8c0c8136eea9107df73a8ce2 on Oct 20, 2021 due to an unbounded recursive call to the new opt() function.

References

  • github.com/jerryscript-project/jerryscript/issues/4779
  • nvd.nist.gov/vuln/detail/CVE-2021-41752

Code Behaviors & Features

Detect and mitigate CVE-2021-41752 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →

Affected versions

All versions before 2021-10-20

Solution

Unfortunately, there is no solution available yet.

Impact 9.8 CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Learn more about CVSS

Weakness

  • CWE-674: Uncontrolled Recursion

Source file

conan/jerryscript/CVE-2021-41752.yml

Spotted a mistake? Edit the file on GitLab.

  • Site Repo
  • About GitLab
  • Terms
  • Privacy Statement
  • Contact

Page generated Wed, 14 May 2025 12:15:44 +0000.