MuJS before 5008105780c0b0182ea6eda83ad5598f225be3ee allows context-dependent attackers to conduct "denial of service (application crash)" attacks by using the "malformed labeled break/continue in JavaScript" approach, related to a "NULL pointer dereference" issue affecting the jscompile.c component. Upstream bug: http://bugs.ghostscript.com/show_bug.cgi?id=697172 Upstream patch: http://git.ghostscript.com/?p=mujs.git;a=commit;h=5008105780c0b0182ea6eda83ad5598f225be3ee
Created mujs tracking bugs for this issue: Affects: fedora-all [bug 1390268]