RUSTSEC-2022-0075

Bug in pooling instance allocator

Reported

November 10, 2022

Issued

January 12, 2023 (last modified: January 14, 2023)

Package

wasmtime (crates.io)

Type

Vulnerability

Categories

memory-exposure

Keywords

#use-after-free #Wasm #garbage-collection

Aliases

CVE-2022-39393
GHSA-wh6w-3828-g9qf

Details

https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-wh6w-3828-g9qf

Patched

>=1.0.2, <2.0.0
>=2.0.2

Description

bug in Wasmtime's implementation of its pooling instance allocator where when a linear memory is reused for another instance the initial heap snapshot of the prior instance can be visible, erroneously to the next instance.

Mitigations are described here.