CVE-2022-35173

Name
CVE-2022-35173
Description
An issue was discovered in Nginx NJS v0.7.5. The JUMP offset for a break instruction was not set to a correct offset during code generation, leading to a segmentation violation.
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC http://hg.nginx.org/njs/rev/b7c4e0f714a9
MISC https://github.com/nginx/njs/issues/553
MISC https://github.com/nginx/njs/commit/404553896792b8f5f429dc8852d15784a59d8d3e

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:nginx:njs:0.7.5:*:*:*:*:*:*:* njs == None == 0.7.5

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
njs 3.16-community 0.7.5-r0 Jakub Jirutka <jakub@jirutka.cz> possibly vulnerable