{"url":"http://public2.vulnerablecode.io/api/packages/60729?format=json","purl":"pkg:conan/jerryscript@0","type":"conan","namespace":"","name":"jerryscript","version":"0","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/43240?format=json","vulnerability_id":"VCID-2nym-x2wh-7fda","summary":"Missing Release of Memory after Effective Lifetime\nJerryScript Git version 14ff5bf does not sufficiently track and release allocated memory via `jerry-core/ecma/operations/ecma-regexp-object.c` after `RegExp`, which causes a memory leak.","references":[{"reference_url":"https://github.com/jerryscript-project/jerryscript/issues/4781","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/jerryscript-project/jerryscript/issues/4781"},{"reference_url":"https://github.com/jerryscript-project/jerryscript/pull/4787","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/jerryscript-project/jerryscript/pull/4787"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-41959","reference_id":"CVE-2021-41959","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-41959"}],"fixed_packages":[],"aliases":["CVE-2021-41959"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-2nym-x2wh-7fda"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42469?format=json","vulnerability_id":"VCID-smyh-rg78-eqcy","summary":"Reachable Assertion\nThere is an Assertion in 'context_p->next_scanner_info_p->type == SCANNER_TYPE_FUNCTION' failed at parser_parse_function_arguments in /js/js-parser.c of JerryScript commit a6ab5e9.","references":[{"reference_url":"http://jerryscript.com","reference_id":"","reference_type":"","scores":[],"url":"http://jerryscript.com"},{"reference_url":"https://github.com/jerryscript-project/jerryscript","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/jerryscript-project/jerryscript"},{"reference_url":"https://github.com/jerryscript-project/jerryscript/issues/4916","reference_id":"","reference_type":"","scores":[],"url":"https://github.com/jerryscript-project/jerryscript/issues/4916"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-22901","reference_id":"CVE-2022-22901","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-22901"}],"fixed_packages":[],"aliases":["CVE-2022-22901"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-smyh-rg78-eqcy"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:conan/jerryscript@0"}