CNNVD-202602-1329 Information
CNNVD ID
CNNVD-202602-1329
Related CVE
- CNNVD Published: 2026-02-09
Description (Chinese)
Janet是Janet Language开源的一种函数式和命令式编程语言和字节码解释器。 janet-lang janet 1.40.1及之前版本存在缓冲区错误漏洞,该漏洞源于函数janetc_if存在越界读取,可能导致信息泄露。
Description (English)
Janet is a functional and command-based programming language and byte code interpreter for the Janet Language Open Source. There is an error hole in the buffer zone in the Janet-lang Janet 1.40.1 and earlier versions, which stems from the presence of a cross-border reading function, Janetc if, which could lead to a leak of information.
Hazard Level
Critical
Vulnerability Type
缓冲区错误
Affected Vendor
Janet Language
Published
2026-02-09
Last Modified
2026-02-24
References
https://github.com/janet-lang/janet/ https://github.com/janet-lang/janet/commit/c43e06672cd9dacf2122c99f362120a17c34b391 https://github.com/janet-lang/janet/issues/1700 https://github.com/janet-lang/janet/issues/1702 https://github.com/oneafter/0123/blob/main/ja2/repro https://vuldb.com/?ctiid.344981 https://vuldb.com/?id.344981 https://vuldb.com/?submit.754495
Share on: