JerryScript Git version 14ff5bf does not sufficiently track and release allocated memory via jerry-core/ecma/operations/ecma-regexp-object.c after RegExp, which causes a memory leak.
References
Link | Resource |
---|---|
https://github.com/jerryscript-project/jerryscript/issues/4781 | Exploit Issue Tracking Third Party Advisory |
https://github.com/jerryscript-project/jerryscript/pull/4787 | Exploit Issue Tracking Patch Third Party Advisory |
Configurations
Information
Published : 2022-05-03 04:15
Updated : 2022-05-10 17:11
NVD link : CVE-2021-41959
Mitre link : CVE-2021-41959
JSON object : View
CWE
CWE-401
Missing Release of Memory after Effective Lifetime
Products Affected
jerryscript
- jerryscript