Your submission was sent successfully! Close

CVE-2022-22895

Published: 21 January 2022

Jerryscript 3.0.0 was discovered to contain a heap-buffer-overflow via ecma_utf8_string_to_number_by_radix in /jerry-core/ecma/base/ecma-helpers-conversion.c.

Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
iotjs
Launchpad, Ubuntu, Debian
bionic Needs triage

impish Needs triage

jammy Needs triage

trusty Ignored
(out of standard support)
upstream Needs triage

xenial Ignored
(out of standard support)