From b7f9a58757bdf30e9d64191ac47d81144e3f6098 Mon Sep 17 00:00:00 2001
From: Bouke van der Bijl <boukevanderbijl@gmail.com>
Date: Wed, 16 Nov 2016 17:14:16 -0500
Subject: Fix null pointer dereference in mrb_time_initialize

Reported by https://hackerone.com/raydot
---
 mrbgems/mruby-time/test/time.rb | 11 +++++++++++
 1 file changed, 11 insertions(+)

(limited to 'mrbgems/mruby-time/test')

diff --git a/mrbgems/mruby-time/test/time.rb b/mrbgems/mruby-time/test/time.rb
index 759e2881d..91a646759 100644
--- a/mrbgems/mruby-time/test/time.rb
+++ b/mrbgems/mruby-time/test/time.rb
@@ -211,3 +211,14 @@ assert('2000 times 500us make a second') do
   end
   t.usec == 0
 end
+
+assert("Time#initialize doens't leave uninitialized object accessible") do
+  assert_raise ArgumentError do
+    $x = Time.new
+    a = Object.new
+    def a.to_i
+      $x.mday
+    end
+    $x.initialize a
+  end
+end
-- 
cgit v1.2.3