These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2016-7564 affects Artifex MuJS and is described as a heap-based buffer overflow in Fp_toString within jsfunction.c. The practical impact called out in the source corpus is denial of service through a crash when processing crafted input. Because the NVD vector is network-reachable, unauthenticated, and requires no user interaction, exposed MuJS deployments should treat this as a high-priority stability issue.
CVE-2016-7563 is a high-severity denial-of-service issue in Artifex MuJS. According to NVD, the chartorune function can perform an out-of-bounds read when a * (asterisk) appears at the end of the input, which can crash or otherwise disrupt the process handling the data. The issue is classified as CWE-125 and is reachable without privileges or user interaction per the CVSS vector.
CVE-2016-10141 is a critical integer overflow in MuJS regular-expression emission code. According to the CVE record, a specially crafted regular expression with nested repetition can trigger the flaw in regemit() inside regexp.c, with potential outcomes including code execution or denial of service. The vulnerable range is MuJS versions before commit fa3d30fd18c348bb4b1f3858fb860f4fcd4b2045.