HistoryEditJSON (OSV)

RUSTSEC-2023-0091

Miscompilation of wasm i64x2.shr_s instruction with constant input on x86_64

Reported
Issued
Package
wasmtime (crates.io)
Type
Vulnerability
Aliases
References
CVSS Score
2.2 LOW
CVSS Details
Attack vector
Network
Attack complexity
High
Privileges required
High
User interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
None
CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N
Patched
  • >=10.0.2, <11.0.0
  • >=11.0.2, <12.0.0
  • >=12.0.2

Description

This is an entry in the RustSec database for the Wasmtime security advisory located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-gw5p-q8mj-p7gh. For more information see the GitHub-hosted security advisory.

Advisory available under CC0-1.0 license.