漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Wasmtime vulnerable to panic when using a dropped extenref-typed element segment
Vulnerability Description
wasmtime is a runtime for WebAssembly. The 19.0.0 release of Wasmtime contains a regression introduced during its development which can lead to a guest WebAssembly module causing a panic in the host runtime. A valid WebAssembly module, when executed at runtime, may cause this panic. This vulnerability has been patched in version 19.0.1.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Vulnerability Type
使用不兼容类型访问资源(类型混淆)
Vulnerability Title
wasmtime 安全漏洞
Vulnerability Description
Wasmtime是一个字节码联盟项目,它是一个独立的仅用于 WebAssembly 和 WASI 的 wasm 优化运行时。 wasmtime 19.0.0版本存在安全漏洞,该漏洞源于valid WebAssembly模块在主机运行时存在安全漏洞。
CVSS Information
N/A
Vulnerability Type
N/A