CVE-2021-45005 (https://github.com/ccxvii/mujs/commit/df8559e7bdbc6065276e786217eeee70f28fce66): Artifex MuJS v1.1.3 was discovered to contain a heap buffer overflow which is caused by conflicting JumpList of nested try/finally statements. Fixed in 1.2.0, so please cleanup.
commit ecc1e4ebb09d1d7f3cc049f244f1ad48b4e63b5c Author: Joonas Niilola <juippis@gentoo.org> Date: Wed Nov 2 15:32:29 2022 +0200 dev-lang/mujs: drop 1.1.0, 1.1.2, 1.1.3
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=f6828b989009fecf980c109dc2a5c5349edd6314 commit f6828b989009fecf980c109dc2a5c5349edd6314 Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2024-05-04 08:04:01 +0000 Commit: Hans de Graaff <graaff@gentoo.org> CommitDate: 2024-05-04 08:04:23 +0000 [ GLSA 202405-06 ] mujs: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/833453 Bug: https://bugs.gentoo.org/845399 Bug: https://bugs.gentoo.org/882775 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: Hans de Graaff <graaff@gentoo.org> glsa-202405-06.xml | 47 +++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 47 insertions(+)
