First published: Tue Jan 25 2022(Updated: )
Jsish v3.5.0 was discovered to contain a heap buffer overflow via jsiClearStack in src/jsiEval.c. This vulnerability can lead to a Denial of Service (DoS).
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Jsish Jsish | =3.5.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-46478 is a vulnerability found in Jsish v3.5.0 that allows for a heap buffer overflow via jsiClearStack in src/jsiEval.c, and it can result in a Denial of Service (DoS) attack.
CVE-2021-46478 has a severity level of medium with a score of 5.5.
CVE-2021-46478 can be exploited by triggering a heap buffer overflow through the jsiClearStack function in src/jsiEval.c.
Yes, the fix for CVE-2021-46478 is available in the latest version of Jsish. It is recommended to update to the latest version to mitigate the vulnerability.
You can find more information about CVE-2021-46478 at the following link: https://github.com/pcmacdon/jsish/issues/60