Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Stack overflow vulnerability in eslint before 9.26.0 when serializing objects with circular references in eslint/lib/shared/serialization.js. The exploit is triggered via the RuleTester.run() method, which validates test cases and checks for duplicates. During validation, the internal function checkDuplicateTestCase() is called, which in turn uses the isSerializable() function for serialization checks. When a circular reference object is passed in, isSerializable() enters infinite recursion, ultimately causing a stack overflow.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ESLint 安全漏洞
Vulnerability Description
ESLint是ESLint开源的一个查找并修复JavaScript代码中的问题的工具。 ESLint 9.26.0之前版本存在安全漏洞,该漏洞源于序列化具有循环引用的对象时进入无限递归,可能导致栈溢出。
CVSS Information
N/A
Vulnerability Type
N/A