CVE-2025-14957

A vulnerability was identified in WebAssembly Binaryen up to 125. This affects the function IRBuilder::makeLocalGet/IRBuilder::makeLocalSet/IRBuilder::makeLocalTee of the file src/wasm/wasm-ir-builder.cpp of the component IRBuilder. Such manipulation of the argument Index leads to null pointer...

CVE-2025-14956 WebAssembly Binaryen wasm-binary.cpp readExport heap-based overflow

A vulnerability was determined in WebAssembly Binaryen up to 125. Affected by this issue is the function WasmBinaryReader::readExport of the file src/wasm/wasm-binary.cpp. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has...

CVE-2025-14956 WebAssembly Binaryen wasm-binary.cpp readExport heap-based overflow

A vulnerability was determined in WebAssembly Binaryen up to 125. Affected by this issue is the function WasmBinaryReader::readExport of the file src/wasm/wasm-binary.cpp. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has...

EUVD-2025-204567

A vulnerability was determined in WebAssembly Binaryen up to 125. Affected by this issue is the function WasmBinaryReader::readExport of the file src/wasm/wasm-binary.cpp. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has...

CVE-2025-14956

CVE-2025-14956 affects WebAssembly Binaryen up to 125. The vulnerability is in WasmBinaryReader::readExport (src/wasm/wasm-binary.cpp), causing a heap-based buffer overflow that can be exploited on the local host. Public exploit details exist; patch referenced as 4f52bff8c4075b5630422f902dd92a0af...

CVE-2025-14956

A vulnerability was determined in WebAssembly Binaryen up to 125. Affected by this issue is the function WasmBinaryReader::readExport of the file src/wasm/wasm-binary.cpp. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has...

PT-2025-52497

Name of the Vulnerable Software and Affected Versions WebAssembly Binaryen versions prior to 126 Description A flaw exists in the IRBuilder component of WebAssembly Binaryen. Specifically, the functions IRBuilder::makeLocalGet, IRBuilder::makeLocalSet, and IRBuilder::makeLocalTee within the...

Binaryen 安全漏洞

Binaryen is a WebAssembly open source compiler infrastructure and toolchain library for WebAssembly written in C++. A security vulnerability exists in Binaryen 125 and earlier versions, which stems from a misbehavior of the function WasmBinaryReader::readExport, which could result in a heap buffe...

PT-2025-52491

Name of the Vulnerable Software and Affected Versions WebAssembly Binaryen versions prior to 126 Description A heap-based buffer overflow issue exists in the WasmBinaryReader::readExport function within the src/wasm/wasm-binary.cpp file. This manipulation can be exploited on the local host. The...

Linux Distros Unpatched Vulnerability : CVE-2025-14956

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was determined in WebAssembly Binaryen up to 125. Affected by this issue is the function WasmBinaryReader::readExport of the file...

Linux Distros Unpatched Vulnerability : CVE-2025-14957

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was identified in WebAssembly Binaryen up to 125. This affects the function...

CLSA-2025-1765986482 webkit2gtk3: Fix of 4 CVEs

CVE-2025-13502: fix out of bounds read and integer underflow by adding bounds checking and validating message delimiters - CVE-2025-43430: fix bbq jit compiler writing to wrong stack slots in wasm try/catch blocks - CVE-2025-43421: fix memory handling issues that cause unexpected process crashes...

firefox: thunderbird: Incorrect boundary conditions in the JavaScript: WebAssembly component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions in the JavaScript: WebAssembly component...

firefox: thunderbird: Incorrect boundary conditions in the JavaScript: WebAssembly component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions in the JavaScript: WebAssembly component...

CVE-2025-66627 Wasmi's Linear Memory has a Critical Use After Free Vulnerability

Wasmi is a WebAssembly interpreter focused on constrained and embedded systems. In versions 0.41.0, 0.41.1, 0.42.0 through 0.47.1, 0.50.0 through 0.51.2 and 1.0.0, Wasmi's linear memory implementation leads to a Use After Free vulnerability, triggered by a WebAssembly module under certain memory...

CVE-2025-66627

CVE-2025-66627 affects Wasmi (WebAssembly interpreter for constrained/embedded systems). The issue is a Use-After-Free in Wasmi’s linear memory implementation triggered under certain memory growth conditions, potentially causing memory corruption, information disclosure, or code execution. Affect...

PT-2025-49777

Wasmi is a WebAssembly interpreter focused on constrained and embedded systems. In versions 0.41.0, 0.41.1, 0.42.0 through 0.47.1, 0.50.0 through 0.51.2 and 1.0.0, Wasmi's linear memory implementation leads to a Use After Free vulnerability, triggered by a WebAssembly module under certain memory...

Amazon Linux 2023 : firefox (ALAS2023-2025-1298)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1298 advisory. Race condition in the Graphics component. This vulnerability affects Firefox 145, Firefox ESR 140.5, and Firefox ESR 115.30. CVE-2025-13012 Mitigation bypass in the DOM: Core & HTML component...

GHSA-G4V2-CJQP-RFMQ Critical Use-After-Free in Wasmi's Linear Memory

Summary A use-after-free vulnerability has been discovered in the linear memory implementation of Wasmi. This issue can be triggered by a WebAssembly module under certain memory growth conditions, potentially leading to memory corruption, information disclosure, or code execution. Impact -...

firefox: thunderbird: Incorrect boundary conditions in the JavaScript: WebAssembly component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Incorrect boundary conditions in the JavaScript: WebAssembly component...