4 matches found
CVE-2023-42443
creationtimestamp| type| source ---|---|--- 2023-09-19 00:28:50+00:00| seen| https://t.me/cibsecurity/70680...
2vyper (=0.3.0), async-web3 (>=0.1.0 <=0.3.1) +12 more potentially affected by CVE-2023-42443 via vyper (>=0.1.0b12 <=0.3.1)
vyper PYPI version =0.1.0b12, =0.1.0, =0.0.0, =0.0.0, =0.0.5, =0.1.0, =1.4.0, =0.2.1, =0.1.3, =2.0.24, =0.1.2b2, =0.1.0, =1.3.0 Source cves: CVE-2023-42443 Source advisory: OSV:PYSEC-2023-306...
CVE-2023-42443
Vyper
CVE-2023-42443 Vyper vulnerable to memory corruption in certain builtins utilizing `msize`
Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine EVM. In version 0.3.9 and prior, under certain conditions, the memory used by the builtins rawcall, createfromblueprint and createcopyof can be corrupted. For rawcall, the argument buffer of the call can be corrupted,...