Note:
This project will be discontinued after December 13, 2021. [more]
2016-11-12
Artifex Software, Inc. MuJS before 5008105780c0b0182ea6eda83ad5598f225be3ee allows context-dependent attackers to conduct "denial of service (application crash)" attacks by using the "malformed labeled break/continue in JavaScript" approach, related to a "NULL pointer dereference" issue affecting the jscompile.c component.
| Products | Mujs |
| Type | NULL Pointer Dereference (CWE-476) |
| First patch | - None (likely due to unavailable code) |
| Links |
• http://bugs.ghostscript.com/show_bug.cgi?id=697172
• http://git.ghostscript.com/?p=mujs.git%3Ba=commit%3Bh=5008105780c0b0182ea6eda83ad5598f225be3ee • http://www.securityfocus.com/bid/94293 |