2018-05-31 16:00:00
mitre
PUBLISHED
Espruino before 1.99 allows attackers to cause a denial of service (application crash) with a user crafted input file via a Buffer Overflow during syntax parsing because of a missing check for stack exhaustion with many { characters in jsparse.c.