4 matches found
Security update for chromium (important)
This update to Chromium 63.0.3239.84 fixes the following security issues: - CVE-2017-5124: UXSS with MHTML - CVE-2017-5125: Heap overflow in Skia - CVE-2017-5126: Use after free in PDFium - CVE-2017-5127: Use after free in PDFium - CVE-2017-5128: Heap overflow in WebGL - CVE-2017-5129: Use after...
shopify-scripts: Null pointer dereference in mrb_class
The following code demonstrates a segfault in mruby and mruby-engine: module A module A ensure module A module A module A module A ensure module A module A module A module A module A module A a ensure module A yield end end end end end end end end end end end end end The mruby crash is due to a...
shopify-scripts: Crash: A call to Symbol.new leads to a crash when inspecting the resulting object
Calling Symbol.new leads to a when inspect is called on that method probably even more methods. From my point of view the root cause is related to 185794 the underlying boxing model. Trying the same with Ruby 2.3 will lead to a NoMethodError: undefined method 'new' for Symbol:Class, which is...
shopify-scripts: SIGSEV on mrb_ary_splice
Sample The following code causes a SIGSEV when executed under the sandbox t0me=methods t0me0,0=t0me Crash Here we can see the crash full crash output attached $ bin/sandbox /tmp/mrbarysplice-crash.rb bin/sandbox:21: BUG Segmentation fault at 0x00005200000004 ruby 2.3.1p112 2016-04-26...