Galpeter

**Name of the Vulnerable Software and Affected Versions** Jerryscript versions prior to commit e1ce7dd7271288be8c0c8136eea9107df73a8ce2 **Description** A buffer overflow vulnerability exists in the file ecma-builtin-array-prototype.c, specifically in the function `ecma builtin array prototype object slice` at line 909. This issue affects Jerryscript before the commit e1ce7dd7271288be8c0c8136eea9107df73a8ce2 on Oct 20, 2021. **Recommendations** As a temporary workaround, consider disabling the `ecma builtin array prototype object slice` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** JerryScript version 2.2.0 **Description** The issue in JerryScript allows attackers to hijack the flow of control by controlling a register, which is related to the vm/opcodes.c file. **Recommendations** For JerryScript version 2.2.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.