amaranth-yosys (=0.25.0.0.post69), polywrap-client (=0.1.0a17) +4 more potentially affected by CVE-2026-34983 via wasmtime (=6.0.0)

wasmtime PYPI version =6.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on wasmtime and may be impacted: - amaranth-yosys =0.25.0.0.post69 - polywrap-client =0.1.0a17 - polywrap-client-config-builder =0.1.0a17 - polywrap-uri-resolvers =0.1.0a15,...

amaranth-yosys (=0.25.0.0.post71), yowasp-runtime (>=1.20.0 <=1.21.0) potentially affected by CVE-2026-34983 via wasmtime (=8.0.1)

wasmtime PYPI version =8.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on wasmtime and may be impacted: - amaranth-yosys =0.25.0.0.post71 - yowasp-runtime =1.20.0, =1.21.0 Source cves: CVE-2026-34983 Source advisory: OSV:PYSEC-2026-151...

amaranth-yosys (>=0.25.0.0.post61 <=0.25.0.0.post67), yowasp-runtime (>=1.7.0 <=1.12.0) potentially affected by CVE-2026-34983 via wasmtime (=5.0.0)

wasmtime PYPI version =5.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on wasmtime and may be impacted: - amaranth-yosys =0.25.0.0.post61, =1.7.0, =1.12.0 Source cves: CVE-2026-34983 Source advisory: OSV:PYSEC-2026-151...

amaranth-yosys (=0.25.0.0.post70), yowasp-runtime (=1.19.0) potentially affected by CVE-2026-34983 via wasmtime (=7.0.0)

wasmtime PYPI version =7.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on wasmtime and may be impacted: - amaranth-yosys =0.25.0.0.post70 - yowasp-runtime =1.19.0 Source cves: CVE-2026-34983 Source advisory: OSV:PYSEC-2026-151...

CVE-2026-3407

A flaw was found in YosysHQ yosys, specifically within the BLIF File Parser component. A local user can exploit a heap-based buffer overflow vulnerability by manipulating the Yosys::RTLIL::Const::set function. This manipulation can lead to a denial of service, making the affected system unavailab...

CVE-2026-3407

A vulnerability was determined in YosysHQ yosys up to 0.62. This affects the function Yosys::RTLIL::Const::set of the file kernel/rtlil.h of the component BLIF File Parser. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has...

CVE-2026-3407

A vulnerability was determined in YosysHQ yosys up to 0.62. This affects the function Yosys::RTLIL::Const::set of the file kernel/rtlil.h of the component BLIF File Parser. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has...

CVE-2026-3407 YosysHQ yosys BLIF File rtlil.h set heap-based overflow

A vulnerability was determined in YosysHQ yosys up to 0.62. This affects the function Yosys::RTLIL::Const::set of the file kernel/rtlil.h of the component BLIF File Parser. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has...

CVE-2026-3407

CVE-2026-3407 affects YosysHQ yosys up to 0.62, specifically the function Yosys::RTLIL::Const::set in kernel/rtlil.h of the BLIF File Parser. This vulnerability enables a heap-based buffer overflow and, per the description, may be exploited locally. The exploit has been publicly disclosed. A patc...

EUVD-2026-9140

A vulnerability was determined in YosysHQ yosys up to 0.62. This affects the function Yosys::RTLIL::Const::set of the file kernel/rtlil.h of the component BLIF File Parser. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has...

CVE-2026-3407 YosysHQ yosys BLIF File rtlil.h set heap-based overflow

A vulnerability was determined in YosysHQ yosys up to 0.62. This affects the function Yosys::RTLIL::Const::set of the file kernel/rtlil.h of the component BLIF File Parser. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has...

CVE-2026-3407

A vulnerability was determined in YosysHQ yosys up to 0.62. This affects the function Yosys::RTLIL::Const::set of the file kernel/rtlil.h of the component BLIF File Parser. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has...

PT-2026-22538

A vulnerability was determined in YosysHQ yosys up to 0.62. This affects the function Yosys::RTLIL::Const::set of the file kernel/rtlil.h of the component BLIF File Parser. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has...

amaranth-yosys (=0.25.0.0.post71), yowasp-runtime (>=1.20.0 <=1.21.0) potentially affected by CVE-2024-47813 via wasmtime (=8.0.1)

wasmtime PYPI version =8.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on wasmtime and may be impacted: - amaranth-yosys =0.25.0.0.post71 - yowasp-runtime =1.20.0, =1.21.0 Source cves: CVE-2024-47813 Source advisory: OSV:PYSEC-2024-311...

amaranth-yosys (=0.25.0.0.post70), yowasp-runtime (=1.19.0) potentially affected by CVE-2024-47813 via wasmtime (=7.0.0)

wasmtime PYPI version =7.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on wasmtime and may be impacted: - amaranth-yosys =0.25.0.0.post70 - yowasp-runtime =1.19.0 Source cves: CVE-2024-47813 Source advisory: OSV:PYSEC-2024-311...

amaranth-yosys (>=0.25.0.0.post61 <=0.25.0.0.post67), yowasp-runtime (>=1.7.0 <=1.12.0) potentially affected by CVE-2024-47813 via wasmtime (=5.0.0)

wasmtime PYPI version =5.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on wasmtime and may be impacted: - amaranth-yosys =0.25.0.0.post61, =1.7.0, =1.12.0 Source cves: CVE-2024-47813 Source advisory: OSV:PYSEC-2024-311...

amaranth-yosys (>=0.50.0.0.post107 <=0.50.0.0.post118), astyle-py (>=1.1.0 <=1.1.0rc0) +14 more potentially affected by CVE-2024-47813 via wasmtime (>=30.0.0 <=3.0.0)

wasmtime PYPI version =30.0.0, =0.50.0.0.post107, =1.1.0, =3.11.0, =11.28.0, =1.63.0, =1.63.0, =1.63.0, =1.63.0, =1.63.0, =1.63.0, =0.21.7, =0.26.0, =0.0.16, =0.1.0, =0.0.1, =1.0.0 and more Source cves: CVE-2024-47813 Source advisory: OSV:PYSEC-2024-311...

amaranth-yosys (=0.25.0.0.post72), devcycle-python-server-sdk (>=3.0.0 <=3.6.0) +10 more potentially affected by CVE-2024-47813 via wasmtime (=9.0.0)

wasmtime PYPI version =9.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on wasmtime and may be impacted: - amaranth-yosys =0.25.0.0.post72 - devcycle-python-server-sdk =3.0.0, =0.1.0, =0.1.0a15, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.9 ...

amaranth-yosys (>=0.40.0.0.post94 <=0.50.0.0.post105), checkrd (>=0.3.0 <=0.3.3) +15 more potentially affected by CVE-2024-47813 via wasmtime (>=20.0.0 <=29.0.0)

wasmtime PYPI version =20.0.0, =0.40.0.0.post94, =0.3.0, =3.6.1, =0.1.0, =0.4.10, =2.5.0, =0.1.0, =0.1.0, =0.5.0, =0.1.0, =0.1.0, =0.1.0, =0.1.1 and more Source cves: CVE-2024-47813 Source advisory: OSV:PYSEC-2024-311...

memquery (=0.1.1), nmigen-yosys (>=0.9.0.post3527.dev26 <=0.9.0.post3746.dev32) +15 more potentially affected by CVE-2021-39216 +2 more via wasmtime (>=0.18.2 <=0.28.1)

wasmtime PYPI version =0.18.2, =0.9.0.post3527.dev26, =0.0.0.post2625.dev9, =0.0.0.post2625.dev9, =0.0.0.post2625.dev9, =0.0.0.post2625.dev9, =0.0.0.post2625.dev9, =0.0.0.post3694.dev181, =0.0.0.post2616.dev1, =0.0.0.post2616.dev1, =0.0.0.post2616.dev1, =0.0.0.post2616.dev1, =0.0.0.post2616.dev1,...