use after free in mrbvmexec in GitHub repository mruby/mruby prior to 3.2.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/1xxx/CVE-2022-1106.json",
"cna_assigner": "@huntrdev",
"cwe_ids": [
"CWE-416"
]
}{
"source": [
"CPE_RANGE",
"REFERENCES"
],
"cpe": "cpe:2.3:a:mruby:mruby:*:*:*:*:*:*:*:*",
"extracted_events": [
{
"introduced": "0"
},
{
"last_affected": "3.1"
}
]
}"2026-07-09T01:25:37Z"
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-1106.json"
[
{
"id": "CVE-2022-1106-82f012c2",
"digest": {
"function_hash": "160687571943972971128555940152249320495",
"length": 36827.0
},
"signature_version": "v1",
"signature_type": "Function",
"source": "https://github.com/mruby/mruby/commit/7f5a490d09f4d56801ac3a3e4e39e03e1471b44c",
"deprecated": false,
"target": {
"function": "mrb_vm_exec",
"file": "src/vm.c"
}
},
{
"id": "CVE-2022-1106-8fc4420f",
"digest": {
"line_hashes": [
"49593699705112139112510258770588670096",
"251926629524209834130737146212038786980",
"249291305442330802981209138847719089427",
"16226952439596658830888344797889575451",
"46906750371387534427869995368257883017",
"45739868171485261675501505783169186625",
"174842642961999513777453679537852634669",
"294363674387220683829294139768082150891",
"248100225037294706410372066324473579923"
],
"threshold": 0.9
},
"signature_version": "v1",
"signature_type": "Line",
"source": "https://github.com/mruby/mruby/commit/7f5a490d09f4d56801ac3a3e4e39e03e1471b44c",
"deprecated": false,
"target": {
"file": "src/vm.c"
}
}
]