SB2018051817 - Multiple vulnerabilities in Espruino
Published: May 18, 2018
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) NULL pointer dereference (CVE-ID: CVE-2018-11591)
The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to a NULL pointer dereference error in in jsvar.c. A remote attacker can trigger denial of service conditions via a NULL pointer dereference during syntax parsing.
2) Buffer over-read (CVE-ID: CVE-2018-11592)
The vulnerability allows a remote attacker to gain access to sensitive information and perform a denial of service attack.
The vulnerability exists due to boundary error when parsing files in libs/graphics/jswrap_graphics.c. A remote attacker can create a specially crafted file and gain access to sensitive information or trigger denial of service conditions.
Remediation
Install update from vendor's website.
References
- https://github.com/espruino/Espruino/commit/b6d362f6a1f2de0b3e7604848116efb509196bf4
- https://github.com/espruino/Espruino/files/2015612/test.txt
- https://github.com/espruino/Espruino/issues/1420
- https://github.com/espruino/Espruino/commit/8a44b04b584b3d3ab1cb68fed410f7ecb165e50e
- https://github.com/espruino/Espruino/files/2015630/test_0.txt
- https://github.com/espruino/Espruino/issues/1421