C0Nstantine110

**Name of the Vulnerable Software and Affected Versions** Cesanta mJS version 1.26 **Description** The issue allows remote attackers to cause a denial of service via a crafted .js file to `mjs set errorf`. This can lead to a buffer overflow. **Recommendations** For Cesanta mJS version 1.26, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** tcpslice (affected versions not specified) **Description** The issue is related to a use after free in tcpslice, which triggers AddressSanitizer. There is no other confirmed impact. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.