CVE-2020-22886

Name of the Vulnerable Software and Affected Versions muJS versions prior to 1.0.8

Description The issue is related to a buffer overflow vulnerability in the jsG markobject function of the jsgc.c component in the MuJS JavaScript interpreter. This vulnerability is caused by the lack of input validation when copying a buffer, allowing a remote attacker to cause a denial of service.

Recommendations For versions prior to 1.0.8, update to version 1.0.8 or later to resolve the issue. As a temporary workaround, consider restricting access to the jsG markobject function in the jsgc.c component until a patch is available.