ID:

CVE-2018-12247 (NVD)

- Vulnerability Info (edit)
2018-06-12

An issue was discovered in mruby 1.4.1. There is a NULL pointer dereference in mrb_class, related to certain .clone usage, because mrb_obj_clone in kernel.c copies flags other than the MRB_FLAG_IS_FROZEN flag (e.g., the embedded flag).

Products Mruby
Type NULL Pointer Dereference (CWE-476)
First patch https://github.com/mruby/mruby/commit/55edae0226409de25e59922807cb09acb45731a2
Patches https://github.com/mruby/mruby/issues/4036
Relevant file/s ./src/kernel.c (modified, +1, -1)
Annotation

Note:

This entry has not been annotated yet.

Please consider adding data:

mruby - Tree: 55edae0226

(? files)

Filter Settings
Files
Navigation
Patch data:

(on by default)


Patched area: