Lucene search

K

Veracode Vulnerability DatabaseVERACODE:31206

HistoryJul 14, 2021 - 6:17 p.m.

Denial Of Service (DoS)

2021-07-1418:17:36

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

8

mruby

vulnerability

denial of service

double free

allocation

software

EPSS

0.002

Percentile

52.3%

mruby is vulnerable to denial of service. It is possible due to a double free in mrb_default_allocf (called from mrb_free and obj_free).

References

bugs.chromium.org/p/oss-fuzz/issues/detail?id=23801

github.com/google/oss-fuzz-vulns/blob/main/vulns/mruby/OSV-2020-744.yaml

github.com/mruby/mruby/commit/97319697c8f9f6ff27b32589947e1918e3015503

security-tracker.debian.org/tracker/CVE-2020-36401

EPSS

0.002

Percentile

52.3%

Related for VERACODE:31206

prion1 ubuntucve1 cve1 nvd1 archlinux1 cvelist1 debiancve1 osv1