Lucene search
K

2106 matches found

BDU FSTEC
BDU FSTEC
added 2022/07/21 12:0 a.m.3 views

The vulnerability affects the implementation of WASM technology in browsers like Firefox, Firefox ESR, and the email client Thunderbird. This allows attackers to trigger a service failure.

The vulnerability of the WASM technology implementation in Firefox browsers, Firefox ESR, and the Thunderbird email client is related to unlimited resource allocation. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

7.6CVSS7.7AI score0.00651EPSS
Exploits0References17Affected Software11
CVE
CVE
added 2022/07/20 10:30 p.m.75 views

CVE-2022-31146

CVE-2022-31146 affects Wasmtime (Cranelift) in the migration to the regalloc2 allocator (Wasmtime 0.37.0). The bug may cause metadata for reference-typed functions to be missing during GC, making the GC pass think there are no live references, leading to use-after-free when values are later acces...

8.8CVSS7.5AI score0.00856EPSS
Exploits0References3Affected Software2
Fedora
Fedora
added 2022/07/17 1:16 a.m.29 views

[SECURITY] Fedora 35 Update: tinygo-0.23.0-5.fc35

Go compiler for small places. Microcontrollers, WebAssembly, and command-line tools. Based on LLVM...

9.3CVSS9.2AI score0.05994EPSS
Exploits3
Fedora
Fedora
added 2022/07/17 1:15 a.m.26 views

[SECURITY] Fedora 35 Update: golang-gioui-0-8.20201225git18d4dbf.fc35

Immediate mode GUI programs in Go for Android, iOS, macOS, Linux, FreeBSD, OpenBSD, Windows, and WebAssembly experimental. See the project page gioui. org for documentation and more information...

9.3CVSS9AI score0.05994EPSS
Exploits4
OpenVAS
OpenVAS
added 2022/07/06 12:0 a.m.20 views

Fedora: Security Advisory for golang-gioui (FEDORA-2022-fae3ecee19)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.3CVSS8.9AI score0.05994EPSS
Exploits4References2
Fedora
Fedora
added 2022/07/04 1:35 a.m.22 views

[SECURITY] Fedora 36 Update: golang-gioui-0-8.20201225git18d4dbf.fc36

Immediate mode GUI programs in Go for Android, iOS, macOS, Linux, FreeBSD, OpenBSD, Windows, and WebAssembly experimental. See the project page gioui. org for documentation and more information...

9.3CVSS9AI score0.05994EPSS
Exploits4
Github Security Blog
Github Security Blog
added 2022/06/29 10:8 p.m.37 views

Miscompilation of `i8x16.swizzle` and `select` with v128 inputs

Impact Wasmtime's implementation of the SIMD proposal for WebAssembly on x8664 contained two distinct bugs in the instruction lowerings implemented in Cranelift. The aarch64 implementation of the simd proposal is not affected. The bugs were presented in the i8x16.swizzle and select WebAssembly...

6.8CVSS5.9AI score0.01625EPSS
Exploits0References9Affected Software2
OSV
OSV
added 2022/06/29 10:8 p.m.20 views

GHSA-JQWC-C49R-4W2X Miscompilation of `i8x16.swizzle` and `select` with v128 inputs

Impact Wasmtime's implementation of the SIMD proposal for WebAssembly on x8664 contained two distinct bugs in the instruction lowerings implemented in Cranelift. The aarch64 implementation of the simd proposal is not affected. The bugs were presented in the i8x16.swizzle and select WebAssembly...

4.8CVSS5.6AI score0.01625EPSS
Exploits0References9
NVD
NVD
added 2022/06/28 12:15 a.m.23 views

CVE-2022-31104

Wasmtime is a standalone runtime for WebAssembly. In affected versions wasmtime's implementation of the SIMD proposal for WebAssembly on x8664 contained two distinct bugs in the instruction lowerings implemented in Cranelift. The aarch64 implementation of the simd proposal is not affected. The bu...

6.8CVSS0.01625EPSS
Exploits0References6
Prion
Prion
added 2022/06/28 12:15 a.m.16 views

Input validation

Wasmtime is a standalone runtime for WebAssembly. In affected versions wasmtime's implementation of the SIMD proposal for WebAssembly on x8664 contained two distinct bugs in the instruction lowerings implemented in Cranelift. The aarch64 implementation of the simd proposal is not affected. The bu...

6.8CVSS5.8AI score0.01625EPSS
Exploits0References6Affected Software2
Cvelist
Cvelist
added 2022/06/27 11:20 p.m.42 views

CVE-2022-31104 Miscompilation of `i8x16.swizzle` and `select` with v128 inputs in Wasmtime

Wasmtime is a standalone runtime for WebAssembly. In affected versions wasmtime's implementation of the SIMD proposal for WebAssembly on x8664 contained two distinct bugs in the instruction lowerings implemented in Cranelift. The aarch64 implementation of the simd proposal is not affected. The bu...

4.8CVSS6AI score0.01625EPSS
Exploits0References6
CVE
CVE
added 2022/06/27 11:20 p.m.92 views

CVE-2022-31104

CVE-2022-31104 concerns Wasmtime’s x86_64 SIMD implementation. Two Cranelift lowering bugs affected i8x16.swizzle and select for v128 inputs: swizzle overwrote the mask input register, potentially corrupting a constant; and select incorrectly handled 128‑bit vectors when the condition was 0, movi...

6.8CVSS5.6AI score0.01625EPSS
Exploits0References6Affected Software2
OSV
OSV
added 2022/06/27 11:20 p.m.31 views

CVE-2022-31104 Miscompilation of `i8x16.swizzle` and `select` with v128 inputs in Wasmtime

Wasmtime is a standalone runtime for WebAssembly. In affected versions wasmtime's implementation of the SIMD proposal for WebAssembly on x8664 contained two distinct bugs in the instruction lowerings implemented in Cranelift. The aarch64 implementation of the simd proposal is not affected. The bu...

4.8CVSS5.9AI score0.01625EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2022/06/27 11:20 p.m.7 views

CVE-2022-31104

Wasmtime is a standalone runtime for WebAssembly. In affected versions wasmtime's implementation of the SIMD proposal for WebAssembly on x8664 contained two distinct bugs in the instruction lowerings implemented in Cranelift. The aarch64 implementation of the simd proposal is not affected. The bu...

6.8CVSS5.8AI score0.01625EPSS
Exploits0
CNNVD
CNNVD
added 2022/06/27 12:0 a.m.4 views

Wasmtime 安全漏洞

Wasmtime is a bytecode consortium project that is a standalone wasm-optimized runtime for WebAssembly and WASI only. A security vulnerability exists in Wasmtime. No information about this vulnerability is available at this time, so please stay tuned to CNNVD or the vendor announcement...

6.8CVSS5.9AI score0.01625EPSS
Exploits0References8
Spring Security Advisories
Spring Security Advisories
added 2022/06/16 7:0 a.m.13 views

Bootiful Podcast: Spring Framework contributor Sébastien Deleuze on GraalVM, AOT, project Leyden, and WebAssembly

Hi, Spring fans! In this installment, Josh Long @starbuxman talks to Spring Framework contributor Sébastien Deleuze @sdeleuze on GraalVM, AOT, project Leyden, and WebAssembly...

1.6AI score
Exploits0
RedHat Linux
RedHat Linux
added 2022/06/03 3:39 p.m.8 views

Mozilla: Register allocation problem in WASM on arm64

The Mozilla Foundation Security Advisory describes this flaw as: On arm64, WASM code could have resulted in incorrect assembly generation leading to a register allocation problem, and a potentially exploitable crash...

8.8CVSS7.4AI score0.00651EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/06/03 3:28 p.m.3 views

Mozilla: Register allocation problem in WASM on arm64

The Mozilla Foundation Security Advisory describes this flaw as: On arm64, WASM code could have resulted in incorrect assembly generation leading to a register allocation problem, and a potentially exploitable crash...

8.8CVSS7.4AI score0.00651EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/06/03 12:50 p.m.6 views

Mozilla: Register allocation problem in WASM on arm64

The Mozilla Foundation Security Advisory describes this flaw as: On arm64, WASM code could have resulted in incorrect assembly generation leading to a register allocation problem, and a potentially exploitable crash...

8.8CVSS7.4AI score0.00651EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/06/03 12:24 p.m.8 views

Mozilla: Register allocation problem in WASM on arm64

The Mozilla Foundation Security Advisory describes this flaw as: On arm64, WASM code could have resulted in incorrect assembly generation leading to a register allocation problem, and a potentially exploitable crash...

8.8CVSS7.4AI score0.00651EPSS
Exploits0References6
Rows per page
Query Builder