Skip to content

/ jerryscript

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Assertion 'scope_stack_p > context_p->scope_stack_p' in scanner_literal_is_created #3823

Closed
owl337 opened this issue Jun 1, 2020 · 0 comments
Closed

Assertion 'scope_stack_p > context_p->scope_stack_p' in scanner_literal_is_created #3823

owl337 opened this issue Jun 1, 2020 · 0 comments
Assignees
@rerobika
Labels
bug parser

Comments

@owl337
Copy link

@owl337 owl337 commented Jun 1, 2020

JerryScript revision

d06c3a7

Build platform

Ubuntu 16.04.6 LTS (Linux 4.15.0-99-generic x86_64)

Build steps
python tools/build.py --profile=es2015-subset --lto=off --compile-flag=-g \
--error-messages=on --debug --compile-flag=-g --strip=off --logging=on \
--compile-flag=-fsanitize=address --stack-limit=15
Test case
function f ({"aba,a"})
{
}
Output
ICE: Assertion 'scope_stack_p > context_p->scope_stack_p' failed at /home/JerryScript/jerryscript/jerry-core/parser/js/js-scanner-util.c(scanner_literal_is_created):2510.
Error: ERR_FAILED_INTERNAL_ASSERTION
Aborted (core dumped)

Credits: This vulnerability is detected by chong from OWL337.
@rerobika rerobika self-assigned this Jun 2, 2020
rerobika added a commit to rerobika/jerryscript that referenced this issue Jun 2, 2020
@rerobika
Fix PropertyDefinition parsing in ObjectInitializer
d1d83f9 
This patch fixes jerryscript-project#3822 and fixes jerryscript-project#3823.

JerryScript-DCO-1.0-Signed-off-by: Robert Fancsik frobert@inf.u-szeged.hu
@rerobika rerobika linked a pull request that will close this issue Jun 2, 2020
Fix PropertyDefinition parsing in ObjectInitializer #3832
Merged
rerobika added a commit to rerobika/jerryscript that referenced this issue Jun 2, 2020
@rerobika
Fix PropertyDefinition parsing in ObjectInitializer
da17c7d 
This patch fixes jerryscript-project#3822 and fixes jerryscript-project#3823 and fixes jerryscript-project#3824.

JerryScript-DCO-1.0-Signed-off-by: Robert Fancsik frobert@inf.u-szeged.hu
rerobika added a commit to rerobika/jerryscript that referenced this issue Jun 2, 2020
@rerobika
Fix PropertyDefinition parsing in ObjectInitializer
Loading status checks…
87197ce 
This patch fixes jerryscript-project#3822 and fixes jerryscript-project#3823 and fixes jerryscript-project#3824 and fixes jerryscript-project#3825.

JerryScript-DCO-1.0-Signed-off-by: Robert Fancsik frobert@inf.u-szeged.hu
rerobika added a commit to rerobika/jerryscript that referenced this issue Jun 3, 2020
@rerobika
Fix PropertyDefinition parsing in ObjectInitializer
Loading status checks…
659e923 
This patch fixes jerryscript-project#3822 and fixes jerryscript-project#3823 and fixes jerryscript-project#3824 and fixes jerryscript-project#3825.

JerryScript-DCO-1.0-Signed-off-by: Robert Fancsik frobert@inf.u-szeged.hu
rerobika added a commit to rerobika/jerryscript that referenced this issue Jun 3, 2020
@rerobika
Fix PropertyDefinition parsing in ObjectInitializer
Loading status checks…
3bf4b7c 
This patch fixes jerryscript-project#3822 and fixes jerryscript-project#3823 and fixes jerryscript-project#3824 and fixes jerryscript-project#3825.

JerryScript-DCO-1.0-Signed-off-by: Robert Fancsik frobert@inf.u-szeged.hu
@dbatyai dbatyai closed this in #3832 Jun 3, 2020
dbatyai pushed a commit that referenced this issue Jun 3, 2020
@rerobika
Fix PropertyDefinition parsing in ObjectInitializer (#3832)
Verified
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: 4AEE18F83AFDEB23 Learn about vigilant mode.
Loading status checks…
4660bab 
This patch fixes #3822 and fixes #3823 and fixes #3824 and fixes #3825.

JerryScript-DCO-1.0-Signed-off-by: Robert Fancsik frobert@inf.u-szeged.hu
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@rerobika rerobika

Labels
bug parser
Projects
None yet
Milestone
No milestone
Linked pull requests

Successfully merging a pull request may close this issue.

Fix PropertyDefinition parsing in ObjectInitializer
2 participants
@rerobika @owl337