rustsec/advisory-db
1
0
Fork 0
mirror of https://github.com/rustsec/advisory-db.git synced 2025-12-27 01:54:07 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
main
advisory-db/crates/wasmtime/RUSTSEC-2023-0090.md

726 B
Raw Permalink Blame History 

[advisory]
id = "RUSTSEC-2023-0090"
package = "wasmtime"
date = "2023-03-02"
url = "https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-ff4p-7xrq-q5r8"
categories = ["memory-corruption"]
keywords = []
aliases = ["CVE-2023-26489", "GHSA-ff4p-7xrq-q5r8"]
license = "CC0-1.0"
cvss = "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H"

[versions]
patched = [">= 4.0.1, < 5.0.0", ">= 5.0.1, < 6.0.0", ">= 6.0.1"]

Guest-controlled out-of-bounds read/write on x86_64

This is an entry in the RustSec database for the Wasmtime security advisory located at https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-ff4p-7xrq-q5r8. For more information see the GitHub-hosted security advisory.