OSV-2024-1411

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/mruby/OSV-2024-1411.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2024-1411

Published

2024-12-29T00:03:28.881713Z

Modified

2024-12-29T00:03:28.882100Z

Summary

Use-of-uninitialized-value in mark_context

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=386128938

Crash type: Use-of-uninitialized-value
Crash state:
mark_context
incremental_gc
mrb_incremental_gc

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=386128938

Affected packages

OSS-Fuzz / mruby

Package

Name: mruby
Purl: pkg:generic/mruby

Affected ranges

Type: GIT
Repo: https://github.com/mruby/mruby
Events: Introduced

7c69a37aa6f7d3ef2a39714ec7c1e4e0282d710e

Fixed

8276143f03a5322bca60aa31e428e16c232ee92c

Ecosystem specific

{
    "severity": "MEDIUM"
}

Database specific

{
    "introduced_range": "6037e5029848ad07d3a5000185810a06952a6b5c:61f57b22dd76c4d2f85721417aa21c2bbc4d3e11",
    "fixed_range": "8c2c57c59bc3f76e144f4f0773f9d6077360cbf1:8276143f03a5322bca60aa31e428e16c232ee92c"
}