7 matches found
embly-wrapper (=0.0.2), wasi-common-lucet (>=0.4.0 <=0.4.2) potentially affected by CVE-2021-43790 via lucet-runtime (>=0.4.3 <=0.6.1)
lucet-runtime CARGO version =0.4.3, =0.4.0, =0.4.2 Source cves: CVE-2021-43790 Source advisory: OSV:GHSA-HF79-8HJP-RRVQ...
Use After Free in lucet
Impact There is a bug in the main branch of Lucet's lucet-runtime that allows a use-after-free in an Instance object that could result in memory corruption, data race, or other related issues. This bug was introduced early in the development of Lucet and is present in all releases. As a result of...
GHSA-HF79-8HJP-RRVQ Use After Free in lucet
Impact There is a bug in the main branch of Lucet's lucet-runtime that allows a use-after-free in an Instance object that could result in memory corruption, data race, or other related issues. This bug was introduced early in the development of Lucet and is present in all releases. As a result of...
embly-wrapper (=0.0.2), wasi-common-lucet (>=0.4.0 <=0.4.2) potentially affected by CVE-2021-43790 via lucet-runtime (>=0.4.3 <=0.6.1)
lucet-runtime CARGO version =0.4.3, =0.4.0, =0.4.2 Source cves: CVE-2021-43790 Source advisory: OSV:RUSTSEC-2021-0155...
CVE-2021-43790
Lucet is a native WebAssembly compiler and runtime. There is a bug in the main branch of lucet-runtime affecting all versions published to crates.io that allows a use-after-free in an Instance object that could result in memory corruption, data race, or other related issues. This bug was introduc...
CVE-2021-43790
Lucet (lucet-runtime) has a Use-After-Free in the Instance object caused by a race during destruction when the memory backing the Instance is released back to the pool before other fields are dropped. This affects main branch implementations and all releases published to crates.io, and leads to m...
CVE-2021-43790 Use After Free in lucet
Lucet is a native WebAssembly compiler and runtime. There is a bug in the main branch of lucet-runtime affecting all versions published to crates.io that allows a use-after-free in an Instance object that could result in memory corruption, data race, or other related issues. This bug was introduc...