Mruby Mruby 2.1.2 Release Candidate for Ruby

CPE Details

Mruby Mruby 2.1.2 Release Candidate for Ruby
mruby
mruby
2.1.2
2023-01-17
19h24 +00:00
2023-01-17
19h29 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:mruby:mruby:2.1.2:rc:*:*:*:ruby:*:*

Informations

Vendor

mruby

Product

mruby

Version

2.1.2

Update

rc

Target Software

ruby

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-46023 2023-02-14 00h00 +00:00 An Untrusted Pointer Dereference was discovered in function mrb_vm_exec in mruby before 3.1.0-rc. The vulnerability causes a segmentation fault and application crash.
7.5
High
CVE-2022-1934 2022-05-31 00h20 +00:00 Use After Free in GitHub repository mruby/mruby prior to 3.2.
7.8
High
CVE-2022-1427 2022-04-22 21h35 +00:00 Out-of-bounds Read in mrb_obj_is_kind_of in in GitHub repository mruby/mruby prior to 3.2. # Impact: Possible arbitrary code execution if being exploited.
7.8
High
CVE-2022-1286 2022-04-10 08h40 +00:00 heap-buffer-overflow in mrb_vm_exec in mruby/mruby in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited.
9.8
Critical
CVE-2022-1276 2022-04-10 07h35 +00:00 Out-of-bounds Read in mrb_get_args in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited.
9.8
Critical
CVE-2022-1212 2022-04-05 01h45 +00:00 Use-After-Free in str_escape in mruby/mruby in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited.
9.8
Critical
CVE-2022-1201 2022-04-02 05h45 +00:00 NULL Pointer Dereference in mrb_vm_exec with super in GitHub repository mruby/mruby prior to 3.2. This vulnerability is capable of making the mruby interpreter crash, thus affecting the availability of the system.
6.5
Medium
CVE-2022-1106 2022-03-27 12h05 +00:00 use after free in mrb_vm_exec in GitHub repository mruby/mruby prior to 3.2.
9.1
Critical
CVE-2022-1071 2022-03-26 02h40 +00:00 User after free in mrb_vm_exec in GitHub repository mruby/mruby prior to 3.2.
8.2
High
CVE-2022-0890 2022-03-10 00h10 +00:00 NULL Pointer Dereference in GitHub repository mruby/mruby prior to 3.2.
5.5
Medium
CVE-2022-0717 2022-02-23 01h05 +00:00 Out-of-bounds Read in GitHub repository mruby/mruby prior to 3.2.
9.1
Critical
CVE-2022-0632 2022-02-19 13h00 +00:00 NULL Pointer Dereference in Homebrew mruby prior to 3.2.
5.5
Medium
CVE-2022-0630 2022-02-19 12h55 +00:00 Out-of-bounds Read in Homebrew mruby prior to 3.2.
7.1
High
CVE-2022-0631 2022-02-18 12h55 +00:00 Heap-based Buffer Overflow in Homebrew mruby prior to 3.2.
9.8
Critical
CVE-2022-0623 2022-02-17 05h30 +00:00 Out-of-bounds Read in Homebrew mruby prior to 3.2.
9.1
Critical
CVE-2022-0614 2022-02-16 08h40 +00:00 Use of Out-of-range Pointer Offset in Homebrew mruby prior to 3.2.
5.5
Medium
CVE-2022-0570 2022-02-13 03h50 +00:00 Heap-based Buffer Overflow in Homebrew mruby prior to 3.2.
9.8
Critical
CVE-2022-0525 2022-02-09 02h45 +00:00 Out-of-bounds Read in Homebrew mruby prior to 3.2.
9.1
Critical
CVE-2022-0481 2022-02-04 21h33 +00:00 NULL Pointer Dereference in Homebrew mruby prior to 3.2.
7.5
High
CVE-2022-0326 2022-01-21 05h45 +00:00 NULL Pointer Dereference in Homebrew mruby prior to 3.2.
5.5
Medium
CVE-2022-0240 2022-01-17 12h35 +00:00 mruby is vulnerable to NULL Pointer Dereference
7.5
High
CVE-2022-0080 2022-01-02 10h30 +00:00 mruby is vulnerable to Heap-based Buffer Overflow
9.8
Critical
CVE-2021-4188 2021-12-30 05h55 +00:00 mruby is vulnerable to NULL Pointer Dereference
7.5
High
CVE-2021-4110 2021-12-15 03h40 +00:00 mruby is vulnerable to NULL Pointer Dereference
7.5
High
CVE-2020-36401 2021-07-01 00h51 +00:00 mruby 2.1.2 has a double free in mrb_default_allocf (called from mrb_free and obj_free).
7.8
High
CVE-2020-15866 2020-07-21 12h54 +00:00 mruby through 2.1.2-rc has a heap-based buffer overflow in the mrb_yield_with_class function in vm.c because of incorrect VM stack handling. It can be triggered via the stack_copy function.
9.8
Critical