Cranelift-codegen@* Security Vulnerabilities and Issues — Cranelift-codegen@* CVE List

Lucene search

BytecodeallianceCranelift-codegen*

3 matches found

CVE•added 2022/06/28 12:15 a.m.•72 views

CVE-2022-31104

Wasmtime is a standalone runtime for WebAssembly. In affected versions wasmtime's implementation of the SIMD proposal for WebAssembly on x86_64 contained two distinct bugs in the instruction lowerings implemented in Cranelift. The aarch64 implementation of the simd proposal is not affected. The bug...

6.8CVSS5.6AI score0.00641EPSS

CVE•added 2021/05/24 4:15 p.m.•64 views

CVE-2021-32629

Cranelift is an open-source code generator maintained by Bytecode Alliance. It translates a target-independent intermediate representation into executable machine code. There is a bug in 0.73 of the Cranelift x64 backend that can create a scenario that could result in a potential sandbox escape in ...

8.8CVSS7.8AI score0.00139EPSS

CVE•added 2022/07/22 4:15 a.m.•63 views

CVE-2022-31169

Wasmtime is a standalone runtime for WebAssembly. There is a bug in Wasmtime's code generator, Cranelift, for AArch64 targets where constant divisors can result in incorrect division results at runtime. This affects Wasmtime prior to version 0.38.2 and Cranelift prior to 0.85.2. This issue only aff...

7.5CVSS6.8AI score0.00467EPSS