OSV-2020-1171

Import Source

JSON Data

https://api.osv.dev/v1/vulns/OSV-2020-1171

Published

2020-07-22T21:49:53.004112Z

Modified

2021-03-09T04:49:05.127803Z

Summary

Heap-use-after-free in JS_ReadObjectRec

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=21532

Crash type: Heap-use-after-free READ 4 Crash state: JSReadObjectRec JSReadObject fuzz_compile.c

References

Affected packages

Type: GIT
Repo: https://github.com/horhof/quickjs
Events: Introduced

unknown:5ae7ebbeecc4210e763ad76555571e3b31db6e24

Fixed

1bf1aba3af61529a282528c8c382b5f078cce63f

20200316

{
    "severity": "HIGH"
}