VYPR
Unrated severityOSV Advisory· Published Jan 29, 2019· Updated Aug 4, 2024

CVE-2019-7154

CVE-2019-7154

Description

The main function in tools/wasm2js.cpp in Binaryen 1.38.22 has a heap-based buffer overflow because Emscripten is misused, triggering an error in cashew::JSPrinter::printAst() in emscripten-optimizer/simple_ast.h. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by wasm2js.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Webassembly/BinaryenOSV2 versions
    1.36.10, 1.36.11, 1.36.12, …+ 1 more
    • (no CPE)range: 1.36.10, 1.36.11, 1.36.12, …
    • (no CPE)range: = 1.38.22

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.