Lucene search
PRIOn knowledge basePRION:CVE-2018-10191HistoryApr 17, 2018 - 9:29 p.m.
Integer overflow
2018-04-1721:29:00
PRIOn knowledge base
www.prio-n.com
4
In versions of mruby up to and including 1.4.0, an integer overflow exists in src/vm.c::mrb_vm_exec() when handling OP_GETUPVAR in the presence of deep scope nesting, resulting in a use-after-free. An attacker that can cause Ruby code to be run can use this to possibly execute arbitrary code.
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian_linux | eq | 9.0 | |
| mruby | le | 1.4.0 |
Related
cve
cve
CVE-2018-10191
2018-04-17 21:29:00
ubuntucve
ubuntucve
CVE-2018-10191
2018-04-17 00:00:00
osv
osv
CVE-2018-10191
2018-04-17 21:29:00
mruby - security update
2022-05-06 00:00:00
cvelist
cvelist
CVE-2018-10191
2018-04-17 21:00:00
nvd
nvd
CVE-2018-10191
2018-04-17 21:29:00
debiancve
debiancve
CVE-2018-10191
2018-04-17 21:29:00
kitploit
kitploit
Nautilus - A Grammar Based Feedback Fuzzer
2020-08-12 21:30:00
debian
debian
[SECURITY] [DLA 2996-1] mruby security update
2022-05-06 08:23:30
nessus
nessus
Debian DLA-2996-1 : mruby - LTS security update
2022-05-18 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-2996-1)
2022-05-07 00:00:00