DLA-3378-1
- Source
- https://storage.googleapis.com/debian-osv/dla-osv/DLA-3378-1.json
- Aliases
-
- CVE-2021-46322
- Published
- 2023-03-31T00:00:00Z
- Modified
- 2023-04-02T06:15:22.435511Z
- Details
-
An issue has been found in duktape, an embeddable Javascript engine. It was discovered that a special crafted js file could result in a SEGV due to reaching some stack limits.
For Debian 10 buster, this problem has been fixed in version 2.3.0-1+deb10u1.
We recommend that you upgrade your duktape packages.
For the detailed security status of duktape please refer to its security tracker page at: https://security-tracker.debian.org/tracker/duktape
Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS
- References