Information on source package mruby

Available versions

ReleaseVersion
jessie1.0.0+20141015+gitb4cc962c-1
stretch1.2.0+20161228+git30d5424a-1
buster1.4.1+20180622+git640fca32-1
sid1.4.1+20180622+git640fca32-1

Open issues

BugjessiestretchbustersidDescription
CVE-2018-14337vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableThe CHECK macro in mrbgems/mruby-sprintf/src/sprintf.c in mruby 1.4.1 ...
CVE-2018-12249vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in mruby 1.4.1. There is a NULL pointer ...
CVE-2018-12248vulnerable (no DSA)vulnerable (no DSA)fixedfixedAn issue was discovered in mruby 1.4.1. There is a heap-based buffer ...
CVE-2018-11743vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe init_copy function in kernel.c in mruby 1.4.1 makes initialize_copy ...
CVE-2018-10191vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn versions of mruby up to and including 1.4.0, an integer overflow ...
CVE-2017-9527vulnerable (no DSA)vulnerable (no DSA)fixedfixedThe mark_context_stack function in gc.c in mruby through 1.2.0 allows ...

Resolved issues

BugDescription
CVE-2018-12247An issue was discovered in mruby 1.4.1. There is a NULL pointer ...
CVE-2018-10199In versions of mruby up to and including 1.4.0, a use-after-free ...

Search for package or bug name: Reporting problems