exploitDog

CVE-2018-11743

Опубликовано: 05 июн. 2018

Источник: debian

Описание

The init_copy function in kernel.c in mruby 1.4.1 makes initialize_copy calls for TT_ICLASS objects, which allows attackers to cause a denial of service (mrb_hash_keys uninitialized pointer and application crash) or possibly have unspecified other impact.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
mruby	fixed	1.4.1+20180622+git640fca32-1		package
mruby	no-dsa		jessie	package

Примечания

https://github.com/mruby/mruby/commit/b64ce17852b180dfeea81cf458660be41a78974d
https://github.com/mruby/mruby/issues/4027

Связанные уязвимости

CVE-2018-11743

CVSS3: 9.8

ubuntu

больше 7 лет назад

The init_copy function in kernel.c in mruby 1.4.1 makes initialize_copy calls for TT_ICLASS objects, which allows attackers to cause a denial of service (mrb_hash_keys uninitialized pointer and application crash) or possibly have unspecified other impact.

CVE-2018-11743

CVSS3: 9.8

nvd

больше 7 лет назад

The init_copy function in kernel.c in mruby 1.4.1 makes initialize_copy calls for TT_ICLASS objects, which allows attackers to cause a denial of service (mrb_hash_keys uninitialized pointer and application crash) or possibly have unspecified other impact.

GHSA-7w9j-h3hj-wc9g

CVSS3: 9.8

github

почти 4 года назад

The init_copy function in kernel.c in mruby 1.4.1 makes initialize_copy calls for TT_ICLASS objects, which allows attackers to cause a denial of service (mrb_hash_keys uninitialized pointer and application crash) or possibly have unspecified other impact.