9.6 High
AI Score
Confidence
High
0.005 Low
EPSS
Percentile
76.8%
mruby through 2.1.2-rc has a heap-based buffer overflow in the mrb_yield_with_class function in vm.c because of incorrect VM stack handling. It can be triggered via the stack_copy function.
github.com/mruby/mruby/issues/5042
lists.debian.org/debian-lts-announce/2022/05/msg00006.html