PT-2018-11074 · Mruby · Mruby

Flamezzz

Published

2018-06-12

Updated

2018-08-01

CVE-2018-12247

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions mruby version 1.4.1

Description An issue was discovered related to a NULL pointer dereference in mrb class. This issue is connected to certain usage of .clone, as mrb obj clone in kernel.c copies flags other than the MRB FLAG IS FROZEN flag, such as the embedded flag.

Recommendations For mruby version 1.4.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

CVE-2018-12247

Affected Products

Mruby

PT-2018-11074 · Mruby · Mruby

CVE-2018-12247

Weakness Enumeration

Related Identifiers

Affected Products

References · 7