2106 matches found
UBUNTU-CVE-2021-46048
A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abort in wasm::WasmBinaryBuilder::readFunctions...
Binaryen 安全漏洞
Binaryen 104 is a compiler infrastructure and toolchain library for WebAssembly written in C. A denial of service vulnerability exists in Binaryen 104, which stems from an assertion abort in the software wasm::WasmBinaryBuilder::visitRethrowwasm::Rethrow. , which can be exploited by an attacker t...
Wasm 缓冲区错误漏洞
wasm3 is the fastest WebAssembly interpreter, as well as the most versatile runtime. A security vulnerability exists in Wasm3 0.5.0 that stems from an out-of-bounds write called from EvaluateExpression and InitDataSegments in the runtime version...
Binaryen Denial of Service Vulnerability (CNVD-2022-06888)
Binaryen is a compiler and toolchain infrastructure library for WebAssembly written in C. A denial of service vulnerability exists in Binaryen 103, which stems from an invalid memory address dereference in wasm::WasmBinaryBuilder::visitLet, and could be exploited by an attacker to cause a denial ...
Binaryen Denial of Service Vulnerability (CNVD-2022-06889)
Binaryen is a compiler and toolchain infrastructure library for WebAssembly, written in C. A denial of service vulnerability exists in Binaryen 103, which stems from an assertion failure in wasm::handleunreachable and can be exploited by an attacker to cause a denial of service...
Binaryen 代码问题漏洞
Binaryen is a compiler and toolchain infrastructure library for WebAssembly, written in C. A denial of service vulnerability exists in Binaryen 103, which stems from an assertion failure in wasm::handleunreachable and can be exploited by an attacker to cause a denial of service...
Binaryen 缓冲区错误漏洞
Binaryen is a compiler and toolchain infrastructure library for WebAssembly written in C. A denial of service vulnerability exists in Binaryen 103, which stems from an invalid memory address dereference in wasm::WasmBinaryBuilder::visitLet, and could be exploited by an attacker to cause a denial ...
Mozilla: GC rooting failure when calling wasm instance methods
The Mozilla Foundation Security Advisory describes this flaw as: Failure to correctly record the location of live pointers across wasm instance calls resulted in a GC occurring within the call not tracing those live pointers. This could have led to a use-after-free causing a potentially exploitab...
Mozilla: GC rooting failure when calling wasm instance methods
The Mozilla Foundation Security Advisory describes this flaw as: Failure to correctly record the location of live pointers across wasm instance calls resulted in a GC occurring within the call not tracing those live pointers. This could have led to a use-after-free causing a potentially exploitab...
Mozilla: GC rooting failure when calling wasm instance methods
The Mozilla Foundation Security Advisory describes this flaw as: Failure to correctly record the location of live pointers across wasm instance calls resulted in a GC occurring within the call not tracing those live pointers. This could have led to a use-after-free causing a potentially exploitab...
DEBIAN-CVE-2021-43539
Failure to correctly record the location of live pointers across wasm instance calls resulted in a GC occurring within the call not tracing those live pointers. This could have led to a use-after-free causing a potentially exploitable crash. This vulnerability affects Thunderbird 91.4.0, Firefox...
UBUNTU-CVE-2021-43539
Failure to correctly record the location of live pointers across wasm instance calls resulted in a GC occurring within the call not tracing those live pointers. This could have led to a use-after-free causing a potentially exploitable crash. This vulnerability affects Thunderbird 91.4.0, Firefox...
Latest Firefox 95 Includes RLBox Sandboxing to Protect Browser from Malicious Code
Mozilla is beginning to roll out Firefox 95 with a new sandboxing technology called RLBox that prevents untrusted code and other security vulnerabilities from causing "accidental defects as well as supply-chain attacks." Dubbed "RLBox" and implemented in collaboration with researchers at the...
Lucet Resource Management Error Vulnerability
Lucet is an open source, native WebAssembly compiler and runtime from the Bytecode Alliance organization. Lucet has a resource management error vulnerability that stems from the presence of post-release usage in Lucet's Instance object, which can be exploited by attackers to cause memory...
CVE-2021-43790
Lucet is a native WebAssembly compiler and runtime. There is a bug in the main branch of lucet-runtime affecting all versions published to crates.io that allows a use-after-free in an Instance object that could result in memory corruption, data race, or other related issues. This bug was introduc...
Lucet 资源管理错误漏洞
Lucet is an open source, native WebAssembly compiler and runtime from the Bytecode Alliance organization. Lucet has a resource management error vulnerability that stems from the presence of post-release usage in Lucet's Instance object, which can be exploited by attackers to cause memory...
CVE-2021-43790 Use After Free in lucet
Lucet is a native WebAssembly compiler and runtime. There is a bug in the main branch of lucet-runtime affecting all versions published to crates.io that allows a use-after-free in an Instance object that could result in memory corruption, data race, or other related issues. This bug was introduc...
CVE-2021-43790
Lucet (lucet-runtime) has a Use-After-Free in the Instance object caused by a race during destruction when the memory backing the Instance is released back to the pool before other fields are dropped. This affects main branch implementations and all releases published to crates.io, and leads to m...
CVE-2018-6122
Type confusion in WebAssembly in Google Chrome prior to 66.0.3359.139 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
CVE-2018-6122
Type confusion in WebAssembly in Google Chrome prior to 66.0.3359.139 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...