Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Utf8DecoderBase::WriteUtf16Slow function in unicode-decoder.cc in Google V8, as used in Node.js before 0.12.6, io.js before 1.8.3 and 2.x before 2.3.3, and other products, does not verify that there is memory available for a UTF-16 surrogate pair, which allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted byte sequence.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Joyent Node.js和io.js Google V8 缓冲区错误漏洞
Vulnerability Description
Google Chrome是美国谷歌(Google)公司开发的一款Web浏览器。Google V8是其中的一套开源JavaScript引擎。Joyent Node.js是美国Joyent公司的一套建立在Google V8 JavaScript引擎之上的网络应用平台。io.js是一套衍生自Node.js,并兼容npm(JavaScript的包管理器)的开发平台。 Joyent Node.js和io.js中使用的Google V8的unicode-decoder.cc文件中的‘Utf8DecoderBase:
CVSS Information
N/A
Vulnerability Type
N/A