Tjbecker

**Name of the Vulnerable Software and Affected Versions** mruby versions prior to 3.4.0 **Description** A use after free issue exists in the `sort cmp()` function within the src/array.c file. This flaw requires local access to be exploited. **Recommendations** Apply patch eb398971bfb43c38db3e04528b68ac9a7ce509bc to resolve the issue. As a temporary workaround, consider restricting the use of the `sort cmp()` function.

**Name of the Vulnerable Software and Affected Versions** mruby version 3.4.0 **Description** A flaw exists in mruby version 3.4.0 within the `ary fill exec` function located in the file `mrbgems/mruby-array-ext/src/array.c`. Manipulation of the `start` and `length` arguments can result in an out-of-bounds write. This issue requires local access to exploit. The exploit code has been publicly released. **Recommendations** Apply patch 93619f06dd378db6766666b30c08978311c7ec94.