Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DSA-5291-1:3A91C
HistoryNov 28, 2022 - 7:36 p.m.

[SECURITY] [DSA 5291-1] mujs security update

2022-11-2819:36:08
lists.debian.org
20
mujs security update
lightweight javascript interpreter
cve-2022-30974
cve-2022-30975
cve-2022-44789
denial of service
arbitrary code execution
debian
security advisory

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.1

Confidence

High

EPSS

0.015

Percentile

87.3%

JSON

Debian Security Advisory DSA-5291-1 [email protected]
https://www.debian.org/security/ Moritz Muehlenhoff
November 28, 2022 https://www.debian.org/security/faq

Package : mujs
CVE ID : CVE-2022-30974 CVE-2022-30975 CVE-2022-44789

Multiple security issues were discovered in MuJS, a lightweight
JavaScript interpreter, which could result in denial of service
and potentially the execution of arbitrary code.

For the stable distribution (bullseye), these problems have been fixed in
version 1.1.0-1+deb11u2.

We recommend that you upgrade your mujs packages.

For the detailed security status of mujs please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/mujs

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/

Mailing list: [email protected]

OSVersionArchitecturePackageVersionFilename
Debian11armhflibmujs1-dbgsym< 1.1.0-1+deb11u2libmujs1-dbgsym_1.1.0-1+deb11u2_armhf.deb
Debian11armhflibmujs1< 1.1.0-1+deb11u2libmujs1_1.1.0-1+deb11u2_armhf.deb
Debian11armellibmujs1< 1.1.0-1+deb11u2libmujs1_1.1.0-1+deb11u2_armel.deb
Debian11arm64libmujs1< 1.1.0-1+deb11u2libmujs1_1.1.0-1+deb11u2_arm64.deb
Debian11i386libmujs-dev< 1.1.0-1+deb11u2libmujs-dev_1.1.0-1+deb11u2_i386.deb
Debian11arm64mujs< 1.1.0-1+deb11u2mujs_1.1.0-1+deb11u2_arm64.deb
Debian11mipselmujs< 1.1.0-1+deb11u2mujs_1.1.0-1+deb11u2_mipsel.deb
Debian11mipsellibmujs1< 1.1.0-1+deb11u2libmujs1_1.1.0-1+deb11u2_mipsel.deb
Debian11ppc64ellibmujs1-dbgsym< 1.1.0-1+deb11u2libmujs1-dbgsym_1.1.0-1+deb11u2_ppc64el.deb
Debian11arm64libmujs1-dbgsym< 1.1.0-1+deb11u2libmujs1-dbgsym_1.1.0-1+deb11u2_arm64.deb
Rows per page:
1-10 of 461

Related

openvas 2
osv 4
fedora 1
gentoo 1
nessus 2
cvelist 3
prion 3
nvd 3
veracode 3
alpinelinux 3
cve 3
cnvd 2
debiancve 3
ubuntucve 3
githubexploit 1
rosalinux 1
openvas
openvas
Debian: Security Advisory (DSA-5291-1)
2022-11-30 00:00:00
Fedora: Security Advisory for mujs (FEDORA-2022-c4b56e4400)
2022-12-20 00:00:00
osv
osv
mujs - security update
2022-11-28 00:00:00
CVE-2022-44789
2022-11-23 21:15:11
CVE-2022-30975
2022-05-18 11:15:15
fedora
fedora
[SECURITY] Fedora 37 Update: mujs-1.3.2-1.fc37
2022-12-20 01:29:23
gentoo
gentoo
mujs: Multiple Vulnerabilities
2024-05-04 00:00:00
nessus
nessus
Debian DSA-5291-1 : mujs - security update
2022-11-28 00:00:00
GLSA-202405-06 : mujs: Multiple Vulnerabilities
2024-05-04 00:00:00
cvelist
cvelist
CVE-2022-44789
2022-11-23 00:00:00
CVE-2022-30975
2022-05-18 00:00:00
CVE-2022-30974
2022-05-18 00:00:00
prion
prion
Memory corruption
2022-11-23 21:15:00
Null pointer dereference
2022-05-18 11:15:00
Code injection
2022-05-18 11:15:00
nvd
nvd
CVE-2022-44789
2022-11-23 21:15:11
CVE-2022-30975
2022-05-18 11:15:15
CVE-2022-30974
2022-05-18 11:15:15
veracode
veracode
Remote Code Execution (RCE)
2022-12-05 18:09:51
Denial Of Service (DoS)
2022-07-07 17:11:09
Denial Of Service (DoS)
2022-07-07 17:11:10
alpinelinux
alpinelinux
CVE-2022-30975
2022-05-18 11:15:15
CVE-2022-44789
2022-11-23 21:15:00
CVE-2022-30974
2022-05-18 11:15:15
cve
cve
CVE-2022-44789
2022-11-23 21:15:11
CVE-2022-30975
2022-05-18 11:15:15
CVE-2022-30974
2022-05-18 11:15:15
cnvd
cnvd
Artifex Software Artifex MuJS Denial of Service Vulnerability
2022-05-20 00:00:00
Artifex Software Artifex MuJS Denial of Service Vulnerability (CNVD-2022-70081)
2022-05-20 00:00:00
debiancve
debiancve
CVE-2022-44789
2022-11-23 21:15:11
CVE-2022-30975
2022-05-18 11:15:15
CVE-2022-30974
2022-05-18 11:15:15
ubuntucve
ubuntucve
CVE-2022-44789
2022-11-23 00:00:00
CVE-2022-30975
2022-05-18 00:00:00
CVE-2022-30974
2022-05-18 00:00:00
githubexploit
githubexploit
Exploit for Out-of-bounds Write in Artifex Mujs
2022-11-22 23:11:08
rosalinux
rosalinux
Advisory ROSA-SA-2023-2261
2023-10-22 05:23:53

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

8.1

Confidence

High

EPSS

0.015

Percentile

87.3%

JSON
Related for DEBIAN:DSA-5291-1:3A91C
openvas2osv4fedora1gentoo1nessus2cvelist3prion3nvd3veracode3alpinelinux3cve3cnvd2debiancve3ubuntucve3githubexploit1rosalinux1