VulnerableCode Package Details - pkg:conan/jerryscript@3.0.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:conan/jerryscript@3.0.0

Essentials
History (39)

purl	pkg:conan/jerryscript@3.0.0

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk

Vulnerabilities affecting this package (39)

Vulnerability	Summary	Fixed by
VCID-1dmn-erdq-43gv Aliases: CVE-2022-22894	Out-of-bounds Write Jerryscript was discovered to contain a stack overflow via ecma_lcache_lookup in /jerry-core/ecma/base/ecma-lcache.c.	There are no reported fixed by versions.
VCID-1h9u-ym8m-jbav Aliases: CVE-2021-46347	Reachable Assertion There is an Assertion 'ecma_object_check_class_name_is_object (obj_p)' failed at /jerry-core/ecma/operations/ecma-objects.c in JerryScript	There are no reported fixed by versions.
VCID-27cg-rjmx-pqb4 Aliases: CVE-2021-46348	Reachable Assertion There is an Assertion 'ECMA_STRING_IS_REF_EQUALS_TO_ONE (string_p)' failed at /jerry-core/ecma/base/ecma-literal-storage.c in JerryScript	There are no reported fixed by versions.
VCID-2prq-dcy2-8khr Aliases: CVE-2021-46340	Reachable Assertion There is an Assertion 'context_p->stack_top_uint8 == SCAN_STACK_TRY_STATEMENT \|\| context_p->stack_top_uint8 == SCAN_STACK_CATCH_STATEMENT' failed at /parser/js/js-scanner.c(scanner_scan_statement_end) in JerryScript	There are no reported fixed by versions.
VCID-2xq3-mq8n-fkfc Aliases: CVE-2021-46343	Reachable Assertion There is an Assertion 'context_p->token.type == LEXER_LITERAL' failed at /jerry-core/parser/js/js-parser-expr.c in JerryScript	There are no reported fixed by versions.
VCID-3y3s-cktx-a7fy Aliases: CVE-2021-46338	Reachable Assertion There is an Assertion 'ecma_is_lexical_environment (object_p)' failed at /base/ecma-helpers.c(ecma_get_lex_env_type) in JerryScript	There are no reported fixed by versions.
VCID-55gv-vq2s-33g9 Aliases: CVE-2023-34868	Reachable Assertion Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the parser_parse_for_statement_start at jerry-core/parser/js/js-parser-statm.c.	There are no reported fixed by versions.
VCID-6z4b-cv6b-tqgy Aliases: CVE-2021-46339	Reachable Assertion There is an Assertion 'lit_is_valid_cesu8_string (string_p, string_size)' failed at /base/ecma-helpers-string.c(ecma_new_ecma_string_from_utf8) in JerryScript	There are no reported fixed by versions.
VCID-75m8-ty1f-qbfy Aliases: CVE-2022-22892	Reachable Assertion There is an Assertion 'ecma_is_value_undefined (value) \|\| ecma_is_value_null (value) \|\| ecma_is_value_boolean (value) \|\| ecma_is_value_number (value) \|\| ecma_is_value_string (value) \|\| ecma_is_value_bigint (value) \|\| ecma_is_value_symbol (value) \|\| ecma_is_value_object (value)' failed at jerry-core/ecma/base/ecma-helpers-value.c in Jerryscripts	There are no reported fixed by versions.
VCID-96gz-7p7d-kye6 Aliases: CVE-2022-22895	Out-of-bounds Write Jerryscript was discovered to contain a heap-buffer-overflow via ecma_utf8_string_to_number_by_radix in /jerry-core/ecma/base/ecma-helpers-conversion.c.	There are no reported fixed by versions.
VCID-9mgp-bp1a-a7d4 Aliases: CVE-2021-44992	Improper Restriction of Operations within the Bounds of a Memory Buffer There is an Assertion ''ecma_object_is_typedarray (obj_p)'' failed at /jerry-core/ecma/operations/ecma-typedarray-object.c in Jerryscript	There are no reported fixed by versions.
VCID-agbb-mdrb-j3du Aliases: CVE-2021-44988	Out-of-bounds Write Jerryscript v3.0.0 was discovered to contain a stack overflow via ecma_find_named_property in ecma-helpers.c.	There are no reported fixed by versions.
VCID-bhk2-uvwq-qqa5 Aliases: CVE-2021-44994	Reachable Assertion There is an Assertion ''JERRY_CONTEXT (jmem_heap_allocated_size) == 0'' failed at /jerry-core/jmem/jmem-heap.c in Jerryscript	There are no reported fixed by versions.
VCID-caxw-hx6n-dqed Aliases: CVE-2022-22891	Out-of-bounds Read Jerryscript was discovered to contain a SEGV vulnerability via ecma_ref_object_inline in /jerry-core/ecma/base/ecma-gc.c.	There are no reported fixed by versions.
VCID-cyff-fter-jyfe Aliases: CVE-2021-46351	Reachable Assertion There is an Assertion 'local_tza == ecma_date_local_time_zone_adjustment (date_value)' failed at /jerry-core/ecma/builtin-objects/ecma-builtin-date-prototype.c(ecma_builtin_date_prototype_dispatch_set):421 in JerryScript	There are no reported fixed by versions.
VCID-e6pp-ehvp-v3fs Aliases: CVE-2022-22890	Reachable Assertion There is an Assertion 'arguments_type != SCANNER_ARGUMENTS_PRESENT && arguments_type != SCANNER_ARGUMENTS_PRESENT_NO_REG' failed at /jerry-core/parser/js/js-scanner-util.c in Jerryscript	There are no reported fixed by versions.
VCID-eeup-qx6t-puh9 Aliases: CVE-2023-31919	Reachable Assertion Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the jcontext_raise_exception at jerry-core/jcontext/jcontext.c.	There are no reported fixed by versions.
VCID-enra-h154-hyhu Aliases: CVE-2023-31918	Reachable Assertion Jerryscript 3.0 (commit 1a2c047) was discovered to contain an Assertion Failure via the parser_parse_function_arguments at jerry-core/parser/js/js-parser.c.	There are no reported fixed by versions.
VCID-h53g-vkxw-5fgy Aliases: CVE-2022-22888	Out-of-bounds Write Jerryscript was discovered to contain a stack overflow via ecma_op_object_find_own in /ecma/operations/ecma-objects.c.	There are no reported fixed by versions.
VCID-m9wh-1w5u-p7a1 Aliases: CVE-2023-31907	Out-of-bounds Write Jerryscript 3.0.0 was discovered to contain a heap-buffer-overflow via the component scanner_literal_is_created at /jerry-core/parser/js/js-scanner-util.c.	There are no reported fixed by versions.
VCID-mscu-ujzn-cyfv Aliases: CVE-2021-46342	Reachable Assertion There is an Assertion 'ecma_is_lexical_environment (obj_p) \|\| !ecma_op_object_is_fast_array (obj_p)' failed at /jerry-core/ecma/base/ecma-helpers.c in JerryScript	There are no reported fixed by versions.
VCID-my7c-dmwn-ruck Aliases: CVE-2023-38961	Out-of-bounds Write Buffer Overflwo vulnerability in JerryScript Project jerryscript v.3.0.0 allows a remote attacker to execute arbitrary code via the scanner_is_context_needed component in js-scanner-until.c.	There are no reported fixed by versions.
VCID-nzxx-wpdu-53dv Aliases: CVE-2021-46337	Reachable Assertion There is an Assertion 'page_p != NULL' failed at /parser/js/js-parser-mem.c(parser_list_get) in JerryScript	There are no reported fixed by versions.
VCID-pk9x-w83a-pbf7 Aliases: CVE-2023-31916	Reachable Assertion Jerryscript 3.0 (commit 1a2c047) was discovered to contain an Assertion Failure via the jmem_heap_finalize at jerry-core/jmem/jmem-heap.c.	There are no reported fixed by versions.
VCID-pkt4-nu1n-77cg Aliases: CVE-2023-31920	Reachable Assertion Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the vm_loop at jerry-core/vm/vm.c.	There are no reported fixed by versions.
VCID-pr6g-yv9y-byhf Aliases: CVE-2021-46350	Reachable Assertion There is an Assertion 'ecma_is_value_object (value)' failed at jerryscript/jerry-core/ecma/base/ecma-helpers-value.c in JerryScript	There are no reported fixed by versions.
VCID-u4va-nsrk-pkgr Aliases: CVE-2023-31910	Out-of-bounds Write Jerryscript 3.0 (commit 05dbbd1) was discovered to contain a heap-buffer-overflow via the component parser_parse_function_statement at /jerry-core/parser/js/js-parser-statm.c.	There are no reported fixed by versions.
VCID-ucve-wqaq-5yd1 Aliases: CVE-2023-34867	Reachable Assertion Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the ecma_property_hashmap_create at jerry-core/ecma/base/ecma-property-hashmap.c.	There are no reported fixed by versions.
VCID-uefz-v5rg-8bgx Aliases: CVE-2021-46345	Reachable Assertion There is an Assertion 'cesu8_cursor_p == cesu8_end_p' failed at /jerry-core/lit/lit-strings.c in JerryScript	There are no reported fixed by versions.
VCID-ueya-bx43-73hf Aliases: CVE-2021-46346	Reachable Assertion There is an Assertion 'local_tza == ecma_date_local_time_zone_adjustment (date_value)' failed at /jerry-core/ecma/builtin-objects/ecma-builtin-date-prototype.c(ecma_builtin_date_prototype_dispatch_set):421 in JerryScript	There are no reported fixed by versions.
VCID-uye6-f6w4-wqb3 Aliases: CVE-2022-22893	Out-of-bounds Write Jerryscript was discovered to contain a stack overflow via vm_loop.lto_priv.304 in /jerry-core/vm/vm.c.	There are no reported fixed by versions.
VCID-uzvh-qmgc-juf7 Aliases: CVE-2023-31914	Memory Allocation with Excessive Size Value Jerryscript 3.0 (commit 05dbbd1) was discovered to contain out-of-memory issue in malloc.	There are no reported fixed by versions.
VCID-wjwq-qn34-1qd2 Aliases: CVE-2021-44993	Reachable Assertion There is an Assertion ''ecma_is_value_boolean (base_value)'' failed at /jerry-core/ecma/operations/ecma-get-put-value.c in Jerryscript	There are no reported fixed by versions.
VCID-xv39-kbyz-7feu Aliases: CVE-2021-46336	Reachable Assertion There is an Assertion 'opts & PARSER_CLASS_LITERAL_CTOR_PRESENT' failed at /parser/js/js-parser-expr.c(parser_parse_class_body) in JerryScript	There are no reported fixed by versions.
VCID-y6qb-5zby-a3cp Aliases: CVE-2023-31921	Reachable Assertion Jerryscript 3.0 (commit 05dbbd1) was discovered to contain an Assertion Failure via the ecma_big_uint_div_mod at jerry-core/ecma/operations/ecma-big-uint.c.	There are no reported fixed by versions.
VCID-ycvt-ak76-duge Aliases: CVE-2023-31913	Reachable Assertion Jerryscript 3.0 *commit 1a2c047) was discovered to contain an Assertion Failure via the component parser_parse_class at jerry-core/parser/js/js-parser-expr.c.	There are no reported fixed by versions.
VCID-zbqb-uwgx-nffg Aliases: CVE-2021-46344	Reachable Assertion There is an Assertion 'flags & PARSER_PATTERN_HAS_REST_ELEMENT' failed at /jerry-core/parser/js/js-parser-expr.c in JerryScript	There are no reported fixed by versions.
VCID-ze5f-j4ny-8ueh Aliases: CVE-2021-46349	Reachable Assertion There is an Assertion 'type == ECMA_OBJECT_TYPE_GENERAL \|\| type == ECMA_OBJECT_TYPE_PROXY' failed at /jerry-core/ecma/operations/ecma-objects.c in JerryScript	There are no reported fixed by versions.
VCID-zm48-kdxj-mub9 Aliases: CVE-2023-31906	Out-of-bounds Write Jerryscript 3.0.0(commit 1a2c047) was discovered to contain a heap-buffer-overflow via the component lexer_compare_identifier_to_chars at /jerry-core/parser/js/js-lexer.c.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-02T04:45:37.358060+00:00	GitLab Importer	Affected by	VCID-my7c-dmwn-ruck	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2023-38961.yml	38.6.0
2026-06-02T04:45:03.923015+00:00	GitLab Importer	Affected by	VCID-55gv-vq2s-33g9	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2023-34868.yml	38.6.0
2026-06-02T04:45:02.610294+00:00	GitLab Importer	Affected by	VCID-ucve-wqaq-5yd1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2023-34867.yml	38.6.0
2026-06-02T04:44:47.986635+00:00	GitLab Importer	Affected by	VCID-uzvh-qmgc-juf7	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2023-31914.yml	38.6.0
2026-06-02T04:44:47.712887+00:00	GitLab Importer	Affected by	VCID-pkt4-nu1n-77cg	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2023-31920.yml	38.6.0
2026-06-02T04:44:47.567806+00:00	GitLab Importer	Affected by	VCID-eeup-qx6t-puh9	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2023-31919.yml	38.6.0
2026-06-02T04:44:47.532634+00:00	GitLab Importer	Affected by	VCID-enra-h154-hyhu	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2023-31918.yml	38.6.0
2026-06-02T04:44:47.011804+00:00	GitLab Importer	Affected by	VCID-pk9x-w83a-pbf7	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2023-31916.yml	38.6.0
2026-06-02T04:44:46.975570+00:00	GitLab Importer	Affected by	VCID-y6qb-5zby-a3cp	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2023-31921.yml	38.6.0
2026-06-02T04:44:46.853866+00:00	GitLab Importer	Affected by	VCID-ycvt-ak76-duge	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2023-31913.yml	38.6.0
2026-06-02T04:44:46.230959+00:00	GitLab Importer	Affected by	VCID-zm48-kdxj-mub9	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2023-31906.yml	38.6.0
2026-06-02T04:44:46.056480+00:00	GitLab Importer	Affected by	VCID-m9wh-1w5u-p7a1	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2023-31907.yml	38.6.0
2026-06-02T04:44:45.758069+00:00	GitLab Importer	Affected by	VCID-u4va-nsrk-pkgr	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2023-31910.yml	38.6.0
2026-06-02T04:41:05.495691+00:00	GitLab Importer	Affected by	VCID-agbb-mdrb-j3du	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-44988.yml	38.6.0
2026-06-02T04:41:05.452032+00:00	GitLab Importer	Affected by	VCID-bhk2-uvwq-qqa5	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-44994.yml	38.6.0
2026-06-02T04:41:05.408333+00:00	GitLab Importer	Affected by	VCID-wjwq-qn34-1qd2	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-44993.yml	38.6.0
2026-06-02T04:41:04.922390+00:00	GitLab Importer	Affected by	VCID-9mgp-bp1a-a7d4	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-44992.yml	38.6.0
2026-06-02T04:41:02.868515+00:00	GitLab Importer	Affected by	VCID-75m8-ty1f-qbfy	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2022-22892.yml	38.6.0
2026-06-02T04:41:02.426653+00:00	GitLab Importer	Affected by	VCID-1dmn-erdq-43gv	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2022-22894.yml	38.6.0
2026-06-02T04:41:02.156976+00:00	GitLab Importer	Affected by	VCID-uye6-f6w4-wqb3	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2022-22893.yml	38.6.0
2026-06-02T04:41:01.611697+00:00	GitLab Importer	Affected by	VCID-96gz-7p7d-kye6	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2022-22895.yml	38.6.0
2026-06-02T04:41:01.418506+00:00	GitLab Importer	Affected by	VCID-caxw-hx6n-dqed	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2022-22891.yml	38.6.0
2026-06-02T04:41:00.980461+00:00	GitLab Importer	Affected by	VCID-h53g-vkxw-5fgy	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2022-22888.yml	38.6.0
2026-06-02T04:41:00.940407+00:00	GitLab Importer	Affected by	VCID-3y3s-cktx-a7fy	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-46338.yml	38.6.0
2026-06-02T04:41:00.807026+00:00	GitLab Importer	Affected by	VCID-ueya-bx43-73hf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-46346.yml	38.6.0
2026-06-02T04:41:00.769903+00:00	GitLab Importer	Affected by	VCID-pr6g-yv9y-byhf	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-46350.yml	38.6.0
2026-06-02T04:41:00.731999+00:00	GitLab Importer	Affected by	VCID-ze5f-j4ny-8ueh	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-46349.yml	38.6.0
2026-06-02T04:41:00.693834+00:00	GitLab Importer	Affected by	VCID-1h9u-ym8m-jbav	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-46347.yml	38.6.0
2026-06-02T04:41:00.655466+00:00	GitLab Importer	Affected by	VCID-zbqb-uwgx-nffg	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-46344.yml	38.6.0
2026-06-02T04:41:00.618786+00:00	GitLab Importer	Affected by	VCID-mscu-ujzn-cyfv	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-46342.yml	38.6.0
2026-06-02T04:41:00.581643+00:00	GitLab Importer	Affected by	VCID-e6pp-ehvp-v3fs	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2022-22890.yml	38.6.0
2026-06-02T04:41:00.501618+00:00	GitLab Importer	Affected by	VCID-uefz-v5rg-8bgx	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-46345.yml	38.6.0
2026-06-02T04:41:00.464807+00:00	GitLab Importer	Affected by	VCID-27cg-rjmx-pqb4	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-46348.yml	38.6.0
2026-06-02T04:41:00.391412+00:00	GitLab Importer	Affected by	VCID-cyff-fter-jyfe	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-46351.yml	38.6.0
2026-06-02T04:41:00.353036+00:00	GitLab Importer	Affected by	VCID-nzxx-wpdu-53dv	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-46337.yml	38.6.0
2026-06-02T04:41:00.316316+00:00	GitLab Importer	Affected by	VCID-xv39-kbyz-7feu	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-46336.yml	38.6.0
2026-06-02T04:41:00.278985+00:00	GitLab Importer	Affected by	VCID-6z4b-cv6b-tqgy	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-46339.yml	38.6.0
2026-06-02T04:41:00.241636+00:00	GitLab Importer	Affected by	VCID-2prq-dcy2-8khr	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-46340.yml	38.6.0
2026-06-02T04:41:00.203539+00:00	GitLab Importer	Affected by	VCID-2xq3-mq8n-fkfc	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/jerryscript/CVE-2021-46343.yml	38.6.0