Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Assertion 'block_found' in parser_parse_try_statement_end #3825

Closed
owl337 opened this issue Jun 1, 2020 · 0 comments · Fixed by #3832
Closed

Assertion 'block_found' in parser_parse_try_statement_end #3825

owl337 opened this issue Jun 1, 2020 · 0 comments · Fixed by #3832
Assignees
@rerobika
Labels
bug Undesired behaviour parser Related to the JavaScript parser

Comments

@owl337
Copy link

owl337 commented Jun 1, 2020

JerryScript revision

d06c3a7

Build platform

Ubuntu 16.04.6 LTS (Linux 4.15.0-99-generic x86_64)

Build steps
python tools/build.py --profile=es2015-subset --lto=off --compile-flag=-g \
--error-messages=on --debug --compile-flag=-g --strip=off --logging=on \
--compile-flag=-fsanitize=address --stack-limit=15
Test case
var errorMessage = "toStringThrows"

var toStringThrows = {
  "foo//bar/baz//foo"
}

try {
  var obj = {};
  obj[toStringThrows] = 3;
  assert(false);
} catch (e) {
  assert(e.message == errorMessage);
}
Output
ICE: Assertion 'block_found' failed at /home/JerryScript/jerryscript/jerry-core/parser/js/js-parser-statm.c(parser_parse_try_statement_end):2003.
Error: ERR_FAILED_INTERNAL_ASSERTION
Aborted (core dumped)

Credits: This vulnerability is detected by chong from OWL337.
rerobika added a commit to rerobika/jerryscript that referenced this issue Jun 2, 2020
@rerobika
Fix PropertyDefinition parsing in ObjectInitializer
87197ce 
This patch fixes jerryscript-project#3822 and fixes jerryscript-project#3823 and fixes jerryscript-project#3824 and fixes jerryscript-project#3825.

JerryScript-DCO-1.0-Signed-off-by: Robert Fancsik frobert@inf.u-szeged.hu
@rerobika rerobika self-assigned this Jun 2, 2020
@rerobika rerobika added bug Undesired behaviour parser Related to the JavaScript parser labels Jun 2, 2020
@rerobika rerobika linked a pull request Jun 2, 2020 that will close this issue
Fix PropertyDefinition parsing in ObjectInitializer #3832
Merged
rerobika added a commit to rerobika/jerryscript that referenced this issue Jun 3, 2020
@rerobika
Fix PropertyDefinition parsing in ObjectInitializer
659e923 
This patch fixes jerryscript-project#3822 and fixes jerryscript-project#3823 and fixes jerryscript-project#3824 and fixes jerryscript-project#3825.

JerryScript-DCO-1.0-Signed-off-by: Robert Fancsik frobert@inf.u-szeged.hu
rerobika added a commit to rerobika/jerryscript that referenced this issue Jun 3, 2020
@rerobika
Fix PropertyDefinition parsing in ObjectInitializer
3bf4b7c 
This patch fixes jerryscript-project#3822 and fixes jerryscript-project#3823 and fixes jerryscript-project#3824 and fixes jerryscript-project#3825.

JerryScript-DCO-1.0-Signed-off-by: Robert Fancsik frobert@inf.u-szeged.hu
dbatyai pushed a commit that referenced this issue Jun 3, 2020
@rerobika
Fix PropertyDefinition parsing in ObjectInitializer (#3832)
4660bab 
This patch fixes #3822 and fixes #3823 and fixes #3824 and fixes #3825.

JerryScript-DCO-1.0-Signed-off-by: Robert Fancsik frobert@inf.u-szeged.hu
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees

@rerobika rerobika

Labels
bug Undesired behaviour parser Related to the JavaScript parser
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Fix PropertyDefinition parsing in ObjectInitializer rerobika/jerryscript
2 participants
@rerobika @owl337