CNNVD-202511-2218 Information
CNNVD ID
CNNVD-202511-2218
Related CVE
- CNNVD Published: 2025-11-19
Description (Chinese)
mruby/c是ITOC mruby/c team.开源的一个C语言库。 mruby/c 3.4及之前版本存在代码问题漏洞,该漏洞源于对文件src/alloc.c中函数mrbc_raw_realloc的参数ptr操作不当,可能导致空指针取消引用。
Description (English)
mruby/c is an open-source C-language library of ITOC mruby/c team. Mruby/c 3.4 and previous versions had a code problem loophole, which stemmed from the inappropriate operation of the mrbc raw realloc parameter ptr of the src/alloc.c function, which could lead to the cancellation of the reference by an empty pointer.
Hazard Level
Critical
Vulnerability Type
代码问题
Affected Vendor
ITOC mruby/c team.
Published
2025-11-19
Last Modified
2026-02-24
References
https://github.com/mrubyc/mrubyc/commit/009111904807b8567262036bf45297c3da8f1c87 https://vuldb.com/?id.332925 https://github.com/mrubyc/mrubyc/issues/244 https://vuldb.com/?ctiid.332925 https://github.com/mrubyc/mrubyc/issues/244#issuecomment-3400382026 https://vuldb.com/?submit.692130 https://access.redhat.com/security/cve/cve-2025-13397
Share on: