EUVD-2022-24415

Malicious code in bioql PyPI...

EUVD-2022-24449

Malicious code in bioql PyPI...

CVE-2022-1934

Use After Free in GitHub repository mruby/mruby prior to 3.2...

CVE-2022-1071

User after free in mrbvmexec in GitHub repository mruby/mruby prior to 3.2...

CVE-2022-1106

use after free in mrbvmexec in GitHub repository mruby/mruby prior to 3.2...

CVE-2022-1934

Use After Free in GitHub repository mruby/mruby prior to 3.2...

AZL-41093 CVE-2022-1201 affecting package rust for versions less than 1.75.0-1

NULL Pointer Dereference in mrbvmexec with super in GitHub repository mruby/mruby prior to 3.2. This vulnerability is capable of making the mruby interpreter crash, thus affecting the availability of the system...

shopify-scripts: Invalid handling of zero-length heredoc identifiers leads to infinite loop in the sandbox

Introduction ============ Certain invalid Ruby programs which should normally raise a syntax error are able to cause an infinite loop in MRuby's parser which makes the mruby-engine sandbox and consequently the MRI process it is running in unresponsive to SIGTERM. The process begins looping foreve...