mruby is vulnerable to NULL Pointer Dereference
CVSS Score
6.2
EPSS Score
0.003
Published
2022-01-17
An untrusted pointer dereference in mrb_vm_exec() of mruby v3.0.0 can lead to a segmentation fault or application crash.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-01-14
mruby is vulnerable to Heap-based Buffer Overflow
CVSS Score
8.2
EPSS Score
0.003
Published
2022-01-02
mruby is vulnerable to NULL Pointer Dereference
CVSS Score
6.8
EPSS Score
0.003
Published
2021-12-30
mruby is vulnerable to NULL Pointer Dereference
CVSS Score
9.1
EPSS Score
0.005
Published
2021-12-15
mruby 2.1.2 has a double free in mrb_default_allocf (called from mrb_free and obj_free).
CVSS Score
7.8
EPSS Score
0.002
Published
2021-07-01
mruby through 2.1.2-rc has a heap-based buffer overflow in the mrb_yield_with_class function in vm.c because of incorrect VM stack handling. It can be triggered via the stack_copy function.
CVSS Score
9.8
EPSS Score
0.006
Published
2020-07-21
In mruby 2.1.0, there is a stack-based buffer overflow in mrb_str_len_to_dbl in string.c.
CVSS Score
9.8
EPSS Score
0.005
Published
2020-01-11
In mruby 2.1.0, there is a use-after-free in hash_slice in mrbgems/mruby-hash-ext/src/hash-ext.c.
CVSS Score
9.8
EPSS Score
0.004
Published
2020-01-11
In mruby 2.1.0, there is a use-after-free in hash_values_at in mrbgems/mruby-hash-ext/src/hash-ext.c.
CVSS Score
9.8
EPSS Score
0.004
Published
2020-01-11