Changochen

**Name of the Vulnerable Software and Affected Versions** Artifex MuJS versions prior to 1.0.8 **Description** The issue is related to a use-after-free error in the jsrun.c file due to unconditional marking in the jsgc.c file. **Recommendations** For Artifex MuJS versions prior to 1.0.8, update to version 1.0.8 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** JerryScript versions prior to 2.3.0 **Description** The issue is related to a buffer over-read in JerryScript, which can be triggered by a specific function call, `function({a=arguments}){const arguments}`. **Recommendations** For versions prior to 2.3.0, update to version 2.3.0 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** JerryScript versions prior to 2.3.0 **Description** The issue is related to stack consumption via a function that utilizes `new new Proxy(a,{})` and `JSON.parse("[]",a)`. The vendor notes that the problem stems from the lack of the `--stack-limit` option. **Recommendations** For JerryScript versions prior to 2.3.0, consider adding the `--stack-limit` option to mitigate the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** LuaJIT versions prior to 2.1.0-beta3 **Description** The issue is related to an out-of-bounds read in the `lj err run` function located in `lj err.c`. **Recommendations** For LuaJIT versions prior to 2.1.0-beta3, at the moment, there is no information about a newer version that contains a fix for this issue.