Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Assertion 'scope_stack_p > context_p->scope_stack_p' in scanner_literal_is_created #3823

Closed
owl337 opened this issue Jun 1, 2020 · 0 comments · Fixed by #3832
Closed

Assertion 'scope_stack_p > context_p->scope_stack_p' in scanner_literal_is_created #3823

owl337 opened this issue Jun 1, 2020 · 0 comments · Fixed by #3832
Assignees
@rerobika
Labels
bug Undesired behaviour parser Related to the JavaScript parser

Comments

@owl337
Copy link

owl337 commented Jun 1, 2020

JerryScript revision

d06c3a7

Build platform

Ubuntu 16.04.6 LTS (Linux 4.15.0-99-generic x86_64)

Build steps
python tools/build.py --profile=es2015-subset --lto=off --compile-flag=-g \
--error-messages=on --debug --compile-flag=-g --strip=off --logging=on \
--compile-flag=-fsanitize=address --stack-limit=15
Test case
function f ({"aba,a"})
{
}
Output
ICE: Assertion 'scope_stack_p > context_p->scope_stack_p' failed at /home/JerryScript/jerryscript/jerry-core/parser/js/js-scanner-util.c(scanner_literal_is_created):2510.
Error: ERR_FAILED_INTERNAL_ASSERTION
Aborted (core dumped)

Credits: This vulnerability is detected by chong from OWL337.
@rerobika rerobika self-assigned this Jun 2, 2020
@rerobika rerobika added bug Undesired behaviour parser Related to the JavaScript parser labels Jun 2, 2020
rerobika added a commit to rerobika/jerryscript that referenced this issue Jun 2, 2020
@rerobika
Fix PropertyDefinition parsing in ObjectInitializer
d1d83f9 
This patch fixes jerryscript-project#3822 and fixes jerryscript-project#3823.

JerryScript-DCO-1.0-Signed-off-by: Robert Fancsik frobert@inf.u-szeged.hu
@rerobika rerobika linked a pull request Jun 2, 2020 that will close this issue
Fix PropertyDefinition parsing in ObjectInitializer #3832
Merged
rerobika added a commit to rerobika/jerryscript that referenced this issue Jun 2, 2020
@rerobika
Fix PropertyDefinition parsing in ObjectInitializer
da17c7d 
This patch fixes jerryscript-project#3822 and fixes jerryscript-project#3823 and fixes jerryscript-project#3824.

JerryScript-DCO-1.0-Signed-off-by: Robert Fancsik frobert@inf.u-szeged.hu
rerobika added a commit to rerobika/jerryscript that referenced this issue Jun 2, 2020
@rerobika
Fix PropertyDefinition parsing in ObjectInitializer
87197ce 
This patch fixes jerryscript-project#3822 and fixes jerryscript-project#3823 and fixes jerryscript-project#3824 and fixes jerryscript-project#3825.

JerryScript-DCO-1.0-Signed-off-by: Robert Fancsik frobert@inf.u-szeged.hu
rerobika added a commit to rerobika/jerryscript that referenced this issue Jun 3, 2020
@rerobika
Fix PropertyDefinition parsing in ObjectInitializer
659e923 
This patch fixes jerryscript-project#3822 and fixes jerryscript-project#3823 and fixes jerryscript-project#3824 and fixes jerryscript-project#3825.

JerryScript-DCO-1.0-Signed-off-by: Robert Fancsik frobert@inf.u-szeged.hu
rerobika added a commit to rerobika/jerryscript that referenced this issue Jun 3, 2020
@rerobika
Fix PropertyDefinition parsing in ObjectInitializer
3bf4b7c 
This patch fixes jerryscript-project#3822 and fixes jerryscript-project#3823 and fixes jerryscript-project#3824 and fixes jerryscript-project#3825.

JerryScript-DCO-1.0-Signed-off-by: Robert Fancsik frobert@inf.u-szeged.hu
dbatyai pushed a commit that referenced this issue Jun 3, 2020
@rerobika
Fix PropertyDefinition parsing in ObjectInitializer (#3832)
4660bab 
This patch fixes #3822 and fixes #3823 and fixes #3824 and fixes #3825.

JerryScript-DCO-1.0-Signed-off-by: Robert Fancsik frobert@inf.u-szeged.hu
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees

@rerobika rerobika

Labels
bug Undesired behaviour parser Related to the JavaScript parser
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Fix PropertyDefinition parsing in ObjectInitializer rerobika/jerryscript
2 participants
@rerobika @owl337