Debian Bug report logs -
#989991
Multiple jerryscript security issues
Reply or subscribe to this bug.
Toggle useless messages
Report forwarded
to debian-bugs-dist@lists.debian.org, team@security.debian.org, Debian Javascript Maintainers <pkg-javascript-devel@lists.alioth.debian.org>:
Bug#989991; Package iotjs.
(Thu, 17 Jun 2021 13:33:03 GMT) (full text, mbox, link).
Acknowledgement sent
to Moritz Muehlenhoff <jmm@debian.org>:
New Bug report received and forwarded. Copy sent to team@security.debian.org, Debian Javascript Maintainers <pkg-javascript-devel@lists.alioth.debian.org>.
(Thu, 17 Jun 2021 13:33:03 GMT) (full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: iotjs
Severity: important
Tags: security
X-Debbugs-Cc: Debian Security Team <team@security.debian.org>
There's multiple security issues in jerryscript, which is included in
iotjs:
CVE-2021-26199:
https://github.com/jerryscript-project/jerryscript/issues/4056
CVE-2021-26198:
https://github.com/jerryscript-project/jerryscript/issues/4402
CVE-2021-26197:
https://github.com/jerryscript-project/jerryscript/issues/4403
CVE-2021-26195:
https://github.com/jerryscript-project/jerryscript/issues/4442
CVE-2021-26194:
https://github.com/jerryscript-project/jerryscript/issues/4445
CVE-2020-23323:
https://github.com/jerryscript-project/jerryscript/issues/3871
CVE-2020-23322:
https://github.com/jerryscript-project/jerryscript/issues/3869
CVE-2020-23321:
https://github.com/jerryscript-project/jerryscript/issues/3870
CVE-2020-23320:
https://github.com/jerryscript-project/jerryscript/issues/3835
CVE-2020-23319:
https://github.com/jerryscript-project/jerryscript/issues/3834
CVE-2020-23314:
https://github.com/jerryscript-project/jerryscript/issues/3825
CVE-2020-23313:
https://github.com/jerryscript-project/jerryscript/issues/3823
CVE-2020-23312:
https://github.com/jerryscript-project/jerryscript/issues/3824
CVE-2020-23311:
https://github.com/jerryscript-project/jerryscript/issues/3822
CVE-2020-23310:
https://github.com/jerryscript-project/jerryscript/issues/3821
CVE-2020-23309:
https://github.com/jerryscript-project/jerryscript/issues/3820
CVE-2020-23308:
https://github.com/jerryscript-project/jerryscript/issues/3819
CVE-2020-23306:
https://github.com/jerryscript-project/jerryscript/issues/3753
CVE-2020-23303:
https://github.com/jerryscript-project/jerryscript/issues/3749
CVE-2020-23302:
https://github.com/jerryscript-project/jerryscript/issues/3748
Cheers,
Moritz
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Thu Jun 17 16:15:09 2021;
Machine Name:
bembo
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.
Vulmon