Lucene search
GoogleOSV:RUSTSEC-2024-0338HistoryApr 24, 2024 - 12:00 p.m.
Arithmetic overflows in cosmwasm-std
2024-04-2412:00:00
Google
osv.dev
1
cosmwasm-std
arithmetic overflows
wrong calculations
7.3 High
AI Score
Confidence
Low
Some mathematical operations in cosmwasm-std use wrapping math instead of
panicking on overflow for very big numbers. This can lead to wrong calculations in contracts
that use these operations.
Affected functions:
Uint{256,512}::pow/Int{256,512}::powInt{256,512}::neg
Affected if overflow-checks = true is not set:
Uint{64,128}::pow/Int{64,128}::powInt{64,128}::neg
| CPE | Name | Operator | Version |
|---|---|---|---|
| cosmwasm-std | lt | 1.5.4 | |
| cosmwasm-std | lt | 2.0.2 | |
| cosmwasm-std | ge | 1.5.0 | |
| cosmwasm-std | ge | 2.0.0 | |
| cosmwasm-std | lt | 1.4.4 | |
| cosmwasm-std | ge | 1.3.0 |
7.3 High
AI Score
Confidence
Low