VYPR

apk package

wolfi/wizer

pkg:apk/wolfi/wizer

Vulnerabilities (24)

  • CVE-2024-51756LowNov 5, 2024
    affected < 7.0.5-r3fixed 7.0.5-r3

    The cap-std project is organized around the eponymous `cap-std` crate, and develops libraries to make it easy to write capability-based code. cap-std's filesystem sandbox implementation on Windows blocks access to special device filenames such as "COM1", "COM2", "LPT0", "LPT1", a

  • CVE-2024-51745Nov 5, 2024
    affected < 8.0.0-r0fixed 8.0.0-r0

    Wasmtime is a fast and secure runtime for WebAssembly. Wasmtime's filesystem sandbox implementation on Windows blocks access to special device filenames such as "COM1", "COM2", "LPT0", "LPT1", and so on, however it did not block access to the special device filenames which use su

  • CVE-2024-47813Oct 9, 2024
    affected < 7.0.5-r1fixed 7.0.5-r1

    Wasmtime is an open source runtime for WebAssembly. Under certain concurrent event orderings, a `wasmtime::Engine`'s internal type registry was susceptible to double-unregistration bugs due to a race condition, leading to panics and potentially type registry corruption. That regi

  • CVE-2024-47763Oct 9, 2024
    affected < 7.0.5-r1fixed 7.0.5-r1

    Wasmtime is an open source runtime for WebAssembly. Wasmtime's implementation of WebAssembly tail calls combined with stack traces can result in a runtime crash in certain WebAssembly modules. The runtime crash may be undefined behavior if Wasmtime was compiled with Rust 1.80 or

Page 2 of 2