Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-c25x-cm9x-qqgx: Deno improperly handles resizable ArrayBuffer

Impact

Resizable ArrayBuffers passed to asynchronous native functions that are shrunk during the asynchronous operation could result in an out-of-bound read/write.

It is unlikely that this has been exploited in the wild, as the only version affected is Deno 1.32.0.

Deno Deploy users are not affected.

Patches

The problem has been resolved by disabling resizable ArrayBuffers temporarily in Deno 1.32.1. Deno 1.32.2 will re-enable resizable ArrayBuffers with a proper fix.

Workarounds

Upgrade to Deno 1.32.1, or run with --v8-flags=--no-harmony-rab-gsab to disable resizable ArrayBuffers.

ghsa
Open in Source
#git#perl
  1. GitHub Advisory Database
  2. GitHub Reviewed
  3. CVE-2023-28445

Deno improperly handles resizable ArrayBuffer

Critical severity GitHub Reviewed Published Mar 23, 2023 in denoland/deno • Updated Mar 23, 2023

Package

cargo Deno (Rust)

Affected versions

<= 1.32.0

cargo deno_runtime (Rust)

Impact

Resizable ArrayBuffers passed to asynchronous native functions that are shrunk during the asynchronous operation could result in an out-of-bound read/write.

It is unlikely that this has been exploited in the wild, as the only version affected is Deno 1.32.0.

Deno Deploy users are not affected.

Patches

The problem has been resolved by disabling resizable ArrayBuffers temporarily in Deno 1.32.1. Deno 1.32.2 will re-enable resizable ArrayBuffers with a proper fix.

Workarounds

Upgrade to Deno 1.32.1, or run with --v8-flags=–no-harmony-rab-gsab to disable resizable ArrayBuffers.

References

  • GHSA-c25x-cm9x-qqgx
  • denoland/deno#18395
  • https://github.com/denoland/deno/releases/tag/v1.32.1

Published to the GitHub Advisory Database

Mar 23, 2023

Last updated

Mar 23, 2023

Related news

CVE-2023-28445: fix: disable resizable ArrayBuffer and growable SharedArrayBuffer by bartlomieju · Pull Request #18395 · denoland/deno

Deno is a runtime for JavaScript and TypeScript that uses V8 and is built in Rust. Resizable ArrayBuffers passed to asynchronous functions that are shrunk during the asynchronous operation could result in an out-of-bound read/write. It is unlikely that this has been exploited in the wild, as the only version affected is Deno 1.32.0. Deno Deploy users are not affected. The problem has been resolved by disabling resizable ArrayBuffers temporarily in Deno 1.32.1. Deno 1.32.2 will re-enable resizable ArrayBuffers with a proper fix. As a workaround, run with `--v8-flags=--no-harmony-rab-gsab` to disable resizable ArrayBuffers.

ghsa: Latest News

GHSA-g5x8-v2ch-gj2g: Vaultwarden HTML injection vulnerability
ghsa