AVG-2116 log

Package mruby
Status Fixed
Severity Medium
Type arbitrary code execution
Affected 2.1.2-1
Fixed 3.0.0-1
Current 3.0.0-1 [community]
Ticket None
Created Thu Jul 1 09:23:41 2021
Issue Severity Remote Type Description
CVE-2020-36401 Medium Yes Arbitrary code execution
mruby 2.1.2 has a double free in mrb_default_allocf (called from mrb_free and obj_free).
Date Advisory Package Type
01 Jul 2021 ASA-202107-10 mruby arbitrary code execution