How severe is CVE-2019-7704?

CVE-2019-7704 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2019-7704

Name: binaryen
Author: webassembly

6.5MEDIUM

wasm::WasmBinaryBuilder::readUserSection in wasm-binary.cpp in Binaryen 1.38.22 triggers an attempt at excessive memory allocation, as demonstrated by wasm-merge and wasm-opt.

Опубликовано: 2/10/2019Обновлено: 11/21/2024

Описание

wasm::WasmBinaryBuilder::readUserSection in wasm-binary.cpp in Binaryen 1.38.22 triggers an attempt at excessive memory allocation, as demonstrated by wasm-merge and wasm-opt.

ИИ-АнализНа базе ИИ

Затронутые продукты

webassemblybinaryen

Ссылки

https://github.com/WebAssembly/binaryen/issues/1866
ExploitPatchThird Party Advisory
https://github.com/WebAssembly/binaryen/issues/1866
ExploitPatchThird Party Advisory