Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
janet-lang janet compile.c janetc_pop_funcdef out-of-bounds
Vulnerability Description
A vulnerability has been found in janet-lang janet up to 1.40.1. The impacted element is the function janetc_pop_funcdef of the file src/core/compile.c. Such manipulation leads to out-of-bounds read. The attack must be carried out locally. The exploit has been disclosed to the public and may be used. The name of the patch is 4dd08a4cdef5b1c42d9a2c19fc24412e97ef51d5. A patch should be applied to remediate this issue.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
跨界内存读
Vulnerability Title
Janet 缓冲区错误漏洞
Vulnerability Description
Janet是Janet Language开源的一种函数式和命令式编程语言和字节码解释器。 Janet 1.40.1及之前版本存在缓冲区错误漏洞,该漏洞源于函数janetc_pop_funcdef存在越界读取,可能导致信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A