10 matches found
EUVD-2025-35897
Wasmtime vulnerable to segfault when using component resources...
CVE-2025-62711
Wasmtime is a runtime for WebAssembly. In versions from 38.0.0 to before 38.0.3, the implementation of component-model related host-to-wasm trampolines in Wasmtime contained a bug where it's possible to carefully craft a component, which when called in a specific way, would crash the host with a...
UBUNTU-CVE-2025-62711
Wasmtime is a runtime for WebAssembly. In versions from 38.0.0 to before 38.0.3, the implementation of component-model related host-to-wasm trampolines in Wasmtime contained a bug where it's possible to carefully craft a component, which when called in a specific way, would crash the host with a...
CVE-2025-62711
Wasmtime (WebAssembly runtime) versions 38.0.0–38.0.2 contain a bug in the component-model host-to-wasm trampolines that can crash the host (segfault or assert) when a component is carefully crafted and invoked in a specific way. This issue is fixed in Wasmtime 38.0.3; there are no known workarou...
CVE-2025-62711 Wasmtime vulnerable to segfault when using component resources
Wasmtime is a runtime for WebAssembly. In versions from 38.0.0 to before 38.0.3, the implementation of component-model related host-to-wasm trampolines in Wasmtime contained a bug where it's possible to carefully craft a component, which when called in a specific way, would crash the host with a...
CVE-2025-62711 Wasmtime vulnerable to segfault when using component resources
Wasmtime is a runtime for WebAssembly. In versions from 38.0.0 to before 38.0.3, the implementation of component-model related host-to-wasm trampolines in Wasmtime contained a bug where it's possible to carefully craft a component, which when called in a specific way, would crash the host with a...
CVE-2025-62711 Wasmtime vulnerable to segfault when using component resources
Wasmtime is a runtime for WebAssembly. In versions from 38.0.0 to before 38.0.3, the implementation of component-model related host-to-wasm trampolines in Wasmtime contained a bug where it's possible to carefully craft a component, which when called in a specific way, would crash the host with a...
wasmtime 安全漏洞
wasmtime is a lightweight WebAssembly runtime open-sourced by the Bytecode Alliance. A security vulnerability exists in wasmtime version 38.0.0 through versions prior to 38.0.3, which stems from a flaw in the host-to-wasm springboard implementation associated with the component model, which could...
GHSA-39HC-V87J-747X Vulnerable OpenSSL included in cryptography wheels
pyca/cryptography's wheels include a statically linked copy of OpenSSL. The versions of OpenSSL included in cryptography 37.0.0-38.0.3 are vulnerable to a number of security issues. More details about the vulnerabilities themselves can be found in https://www.openssl.org/news/secadv/20221101.txt...
PT-2022-28180 · Pyca · Cryptography
Name of the Vulnerable Software and Affected Versions: cryptography versions 37.0.0 through 38.0.3 Description: The issue concerns the statically linked copy of OpenSSL in pyca/cryptography's wheels. The included versions of OpenSSL are affected by several security issues, details of which can be...