A NULL pointer dereference was discovered in SExpressionWasmBuilder::makeBlock in wasm/wasm-s-parser.c in Binaryen 1.38.26. A crafted wasm input can cause a segmentation fault, leading to denial-of-service, as demonstrated by wasm-as.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/WebAssembly/binaryen/issues/1900 |
History
Thu, 03 Oct 2024 21:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-08-22T00:00:00
Updated: 2024-10-03T20:30:39.248Z
Reserved: 2020-08-13T00:00:00
Link: CVE-2020-18378
Vulnrichment
Updated: 2024-08-04T14:00:49.256Z
NVD
Status : Modified
Published: 2023-08-22T19:15:55.143
Modified: 2024-11-21T05:08:33.083
Link: CVE-2020-18378
Redhat
No data.