Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
janet-lang janet os.c os_strftime out-of-bounds
Vulnerability Description
A vulnerability was found in janet-lang janet up to 1.40.1. This affects the function os_strftime of the file src/core/os.c. Performing a manipulation results in out-of-bounds read. The attack must be initiated from a local position. The exploit has been made public and could be used. The patch is named 0f285855f0e34f9183956be5f16e045f54626bff. To fix this issue, it is recommended to deploy a patch.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
跨界内存读
Vulnerability Title
Janet 缓冲区错误漏洞
Vulnerability Description
Janet是Janet Language开源的一种函数式和命令式编程语言和字节码解释器。 Janet 1.40.1及之前版本存在缓冲区错误漏洞,该漏洞源于函数os_strftime存在越界读取,可能导致信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A