The init_copy function in kernel.c in mruby 1.4.1 makes initialize_copy calls for TT_ICLASS objects, which allows attackers to cause a denial of service (mrb_hash_keys uninitialized pointer and application crash) or possibly have unspecified other impact.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-06-05T13:00:00
Updated: 2024-08-05T08:17:09.164Z
Reserved: 2018-06-05T00:00:00
Link: CVE-2018-11743
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-06-05T13:29:00.360
Modified: 2022-05-12T20:11:55.160
Link: CVE-2018-11743
Redhat
No data.