Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
WasmEdge integer wrap in MemoryInstance::getSpan()'s memory size check
Vulnerability Description
WasmEdge is a WebAssembly runtime. Prior to version 0.16.0-alpha.3, a multiplication in `WasmEdge/include/runtime/instance/memory.h` can wrap, causing `checkAccessBound()` to incorrectly allow the access. This leads to a segmentation fault. Version 0.16.0-alpha.3 contains a patch for the issue.
CVSS Information
N/A
Vulnerability Type
整数溢出或超界折返
Vulnerability Title
WasmEdge 输入验证错误漏洞
Vulnerability Description
WasmEdge是WasmEdge Runtime开源的一个WebAssembly运行时。 WasmEdge 0.16.0-alpha.3之前版本存在输入验证错误漏洞,该漏洞源于乘法运算导致环绕错误,可能引发分段违规。
CVSS Information
N/A
Vulnerability Type
N/A