Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2021-45947: oss-fuzz-vulns/OSV-2021-689.yaml at main · google/oss-fuzz-vulns

Wasm3 0.5.0 has an out-of-bounds write in Runtime_Release (called from EvaluateExpression and InitDataSegments).

CVE
Open in Source
#google#git

Permalink

Cannot retrieve contributors at this time

id: OSV-2021-689

summary: UNKNOWN WRITE in Runtime_Release

details: |

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=33689

Crash type: UNKNOWN WRITE

Crash state:

Runtime_Release

EvaluateExpression

InitDataSegments

modified: ‘2021-04-27T00:01:03.314516Z’

published: ‘2021-04-27T00:01:03.314259Z’

references:

- type: REPORT

url: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=33689

affected:

- package:

name: wasm3

ecosystem: OSS-Fuzz

ranges:

- type: GIT

repo: https://github.com/wasm3/wasm3

events:

- introduced: 64a22dcdc3e4239cb91b153d25c8b5bb2fac430e

versions:

- v0.5.0

ecosystem_specific:

severity: HIGH

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE