CVE-2021-4110

Source
https://nvd.nist.gov/vuln/detail/CVE-2021-4110
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-4110.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2021-4110
Downstream
Related
Published
2021-12-15T05:15:08Z
Modified
2025-10-21T06:34:38.388334Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

mruby is vulnerable to NULL Pointer Dereference

References

Affected packages

Git / github.com/mruby/mruby

Affected ranges

Type
GIT
Repo
https://github.com/mruby/mruby
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed

Affected versions

1.*

1.0.0
1.1.0
1.2.0
1.3.0
1.4.0
1.4.1

2.*

2.0.0
2.0.1
2.1.0
2.1.0-rc
2.1.1
2.1.1-rc
2.1.1-rc2
2.1.2
2.1.2-rc
2.1.2-rc2

3.*

3.0.0
3.0.0-preview
3.0.0-rc

Database specific

vanir_signatures

[
    {
        "source": "https://github.com/mruby/mruby/commit/f5e10c5a79a17939af763b1dcf5232ce47e24a34",
        "target": {
            "file": "src/proc.c"
        },
        "signature_type": "Line",
        "deprecated": false,
        "signature_version": "v1",
        "digest": {
            "line_hashes": [
                "81744613183312713194633498232241774221",
                "76472689784672277773918762623261264376",
                "338432730937460252987214635049606623656",
                "38052211126622076645216110611359721483",
                "315563396418531360526183761440176085399",
                "210172266487238526245621704828340819147",
                "276729272281913215123254139623753372139",
                "321835851428529090526107069021294414619",
                "228297072417968426637809754933694082842",
                "56409279269911148357986650262569537814",
                "245659391275582475787777387061209053749",
                "139344808500617260219342182204933904756",
                "65587960909726825423486840593725788251",
                "121877422886173124221829006259191227271",
                "228199434602422096300238934284335959329",
                "91221933838093434937892977919638859936",
                "116049066758881167759115994756842185546",
                "54628713840288311888901628046362513501",
                "85820946849108014322776812196924650503",
                "112070244442245628114016658775701643324",
                "119219949876642531913324921046361755735",
                "196268886614353941434219942095847584898",
                "299088664775889351272758458788707710858",
                "41037638100009743519158351735197724954"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2021-4110-2d9b628b"
    },
    {
        "source": "https://github.com/mruby/mruby/commit/f5e10c5a79a17939af763b1dcf5232ce47e24a34",
        "target": {
            "function": "mrb_proc_copy",
            "file": "src/proc.c"
        },
        "signature_type": "Function",
        "deprecated": false,
        "signature_version": "v1",
        "digest": {
            "function_hash": "170839887295996789417340302966067123088",
            "length": 342.0
        },
        "id": "CVE-2021-4110-381c1074"
    },
    {
        "source": "https://github.com/mruby/mruby/commit/f5e10c5a79a17939af763b1dcf5232ce47e24a34",
        "target": {
            "function": "proc_lambda",
            "file": "src/proc.c"
        },
        "signature_type": "Function",
        "deprecated": false,
        "signature_version": "v1",
        "digest": {
            "function_hash": "333984905399964442490591956898359583944",
            "length": 532.0
        },
        "id": "CVE-2021-4110-3aa92957"
    },
    {
        "source": "https://github.com/mruby/mruby/commit/f5e10c5a79a17939af763b1dcf5232ce47e24a34",
        "target": {
            "function": "mrb_mod_define_method_m",
            "file": "src/class.c"
        },
        "signature_type": "Function",
        "deprecated": false,
        "signature_version": "v1",
        "digest": {
            "function_hash": "67351281157542190297845346545570442046",
            "length": 734.0
        },
        "id": "CVE-2021-4110-6435b621"
    },
    {
        "source": "https://github.com/mruby/mruby/commit/f5e10c5a79a17939af763b1dcf5232ce47e24a34",
        "target": {
            "function": "mrb_proc_s_new",
            "file": "src/proc.c"
        },
        "signature_type": "Function",
        "deprecated": false,
        "signature_version": "v1",
        "digest": {
            "function_hash": "312539215175154444098184872836006702823",
            "length": 504.0
        },
        "id": "CVE-2021-4110-9bf7a252"
    },
    {
        "source": "https://github.com/mruby/mruby/commit/f5e10c5a79a17939af763b1dcf5232ce47e24a34",
        "target": {
            "file": "include/mruby/proc.h"
        },
        "signature_type": "Line",
        "deprecated": false,
        "signature_version": "v1",
        "digest": {
            "line_hashes": [
                "340199511158654564253661211061351390579",
                "288046828259962987256747164884810810649",
                "224379878099833040117921309580121891429",
                "142881671413833203139227836027245281770"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2021-4110-b6fc4a57"
    },
    {
        "source": "https://github.com/mruby/mruby/commit/f5e10c5a79a17939af763b1dcf5232ce47e24a34",
        "target": {
            "function": "mrb_proc_init_copy",
            "file": "src/proc.c"
        },
        "signature_type": "Function",
        "deprecated": false,
        "signature_version": "v1",
        "digest": {
            "function_hash": "312426368257420074825662672108432576495",
            "length": 243.0
        },
        "id": "CVE-2021-4110-e3504b69"
    },
    {
        "source": "https://github.com/mruby/mruby/commit/f5e10c5a79a17939af763b1dcf5232ce47e24a34",
        "target": {
            "file": "src/class.c"
        },
        "signature_type": "Line",
        "deprecated": false,
        "signature_version": "v1",
        "digest": {
            "line_hashes": [
                "83886911781544201250485209751989989607",
                "261506501903813121030359324506337859499",
                "232818955340439950056121019440172398908",
                "314041811696983465427387200341854665636"
            ],
            "threshold": 0.9
        },
        "id": "CVE-2021-4110-f43053b6"
    }
]