Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Wasmtime has a use-after-free bug after cloning `wasmtime::Linker`
Vulnerability Description
Wasmtime is a runtime for WebAssembly. In 43.0.0, cloning a wasmtime::Linker is unsound and can result in use-after-free bugs. This bug is not controllable by guest Wasm programs. It can only be triggered by a specific sequence of embedder API calls made by the host. Specifically, the following steps must occur to trigger the bug clone a wasmtime::Linker, drop the original linker instance, use the new, cloned linker instance, resulting in a use-after-free. This vulnerability is fixed in 43.0.1.
CVSS Information
N/A
Vulnerability Type
释放后使用
Vulnerability Title
wasmtime 资源管理错误漏洞
Vulnerability Description
wasmtime是Bytecode Alliance开源的一个轻量级WebAssembly运行时。 Wasmtime 43.0.0版本存在资源管理错误漏洞,该漏洞源于克隆wasmtime::Linker时存在缺陷,可能导致释放后重用。
CVSS Information
N/A
Vulnerability Type
N/A