pkg:Debian/mruby

All known vulnerabilities

• CRITICAL9.8CVE-2022-1286heap-buffer-overflow in mrb_vm_exec in mruby/mruby in GitHub repository mruby/mruby prior to 3.2.
  from 0
• CRITICAL9.8CVE-2022-1212Use-After-Free in str_escape in mruby/mruby in GitHub repository mruby/mruby prior to 3.2.
  from 0
• CRITICAL9.8CVE-2022-0080mruby is vulnerable to Heap-based Buffer Overflow
  from 0
• CRITICAL9.8mruby through 2.1.2-rc has a heap-based buffer overflow in the mrb_yield_with_class function in vm.c because of incorrect VM stack handling.
  from 0, < 2.1.2-1
• CRITICAL9.8The init_copy function in kernel.c in mruby 1.4.1 makes initialize_copy calls for TT_ICLASS objects, which allows attackers to cause a deni…
  from 0, < 1.4.1+20180622+git640fca32-1
• CRITICAL9.8In versions of mruby up to and including 1.4.0, a use-after-free vulnerability exists in src/io.c::File#initilialize_copy().
  from 0, < 1.4.0+20180418+git54905e98-1
• CRITICAL9.8In versions of mruby up to and including 1.4.0, an integer overflow exists in src/vm.c::mrb_vm_exec() when handling OP_GETUPVAR in the pres…
  from 0, < 1.4.0+20180418+git54905e98-1
• HIGH8.2User after free in mrb_vm_exec in GitHub repository mruby/mruby prior to 3.2.
  from 0
• HIGH7.8Out-of-bounds Read in mrb_obj_is_kind_of in in GitHub repository mruby/mruby prior to 3.2.
  from 0
• HIGH7.8mruby 2.1.2 has a double free in mrb_default_allocf (called from mrb_free and obj_free).
  from 0, < 2.1.2-3
• HIGH7.8mruby - security update
  from 0, < 1.3.0-1
• HIGH7.8mruby - security update
  from 0, < 1.2.0+20161228+git30d5424a-1+deb9u1
• HIGH7.5An Untrusted Pointer Dereference was discovered in function mrb_vm_exec in mruby before 3.1.0-rc.
  from 0
• HIGH7.5NULL Pointer Dereference in Homebrew mruby prior to 3.2.
  from 0
• HIGH7.5mruby is vulnerable to NULL Pointer Dereference
  from 0
• HIGH7.5An untrusted pointer dereference in mrb_vm_exec() of mruby v3.0.0 can lead to a segmentation fault or application crash.
  from 0
• HIGH7.5mruby is vulnerable to NULL Pointer Dereference
  from 0
• HIGH7.5The CHECK macro in mrbgems/mruby-sprintf/src/sprintf.c in mruby 1.4.1 contains a signed integer overflow, possibly leading to out-of-bounds…
  from 0, < 2.0.0-1
• HIGH7.5An issue was discovered in mruby 1.4.1.
  from 0, < 1.4.1+20180622+git640fca32-1
• HIGH7.5An issue was discovered in mruby 1.4.1.
  from 0, < 1.4.1+20180622+git640fca32-1
• MEDIUM6.5NULL Pointer Dereference in mrb_vm_exec with super in GitHub repository mruby/mruby prior to 3.2.
  from 0
• MEDIUM5.5A flaw has been found in mruby up to 3.4.0.
  from 0
• MEDIUM5.5A vulnerability has been found in mruby up to 3.4.0.
  from 0
• MEDIUM5.5A vulnerability, which was classified as problematic, was found in mruby up to 3.4.0-rc2.
  from 0
• MEDIUM5.5NULL Pointer Dereference in GitHub repository mruby/mruby prior to 3.2.
  from 0
• MEDIUM5.3A weakness has been identified in mruby 3.4.0.
  from 0