CVE-2023-30408: Segmentation fault in jerry · Issue #5057 · jerryscript-project/jerryscript

First of all, when reporting a bug, give the issue a descriptive title.

In the body of the issue, optionally give a free-form text description of the
bug. Give the context necessary for others to understand the problem.

Then, provide information necessary to reproduce the bug.
Omit sections that are irrelevant for the bug report, but note that information
like git revision, build platform, build command, and test case are required in
almost all cases.

JerryScript revision

1a2c047

Build platform

Ubuntu 20.04.2 LTS (Linux 5.15.0-67-generic x86_64)

Build steps

./tools/build.py

Test case

var p = new Promise(function(resolve,reject){})
var f = async(p) =>{}

await p;

f(p).then(function(){})

Execution platform

same as the build platform.

Execution steps

build/bin/jerry testcase.js

Output

Sometimes throws syntax errors: Unhandled exception: SyntaxError
Most of the time jerry crashes: Segmentation fault (core dumped)

Backtrace****Expected behavior

not to crash