Debian Mruby vulnerabilities

CVE-2018-12247 [HIGH] CVE-2018-12247: mruby - An issue was discovered in mruby 1.4.1. There is a NULL pointer dereference in m... An issue was discovered in mruby 1.4.1. There is a NULL pointer dereference in mrb_class, related to certain .clone usage, because mrb_obj_clone in kernel.c copies flags other than the MRB_FLAG_IS_FROZEN flag (e.g., the embedded flag). Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2017-9527 [HIGH] CVE-2017-9527: mruby - The mark_context_stack function in gc.c in mruby through 1.2.0 allows attackers ... The mark_context_stack function in gc.c in mruby through 1.2.0 allows attackers to cause a denial of service (heap-based use-after-free and application crash) or possibly have unspecified other impact via a crafted .rb file. Scope: local bookworm: resolved (fixed in 1.3.0-1) bullseye: resolved (fixed in 1.3.0-1) forky: resolved (fixed in 1.3.0-1) sid: resolved (fixed in