chakracore is vulnerable to remote code execution (RCE). The vulnerability exists in lib/Backend/GlobOpt.cpp
where there was a memory issue in using src2
as the induction sym
. This CVE ID is different from CVE-2019-1307, CVE-2019-1308, CVE-2019-1366.