crates.io package
solana_rbpf
pkg:cargo/solana_rbpf
Vulnerabilities (3)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-31264 | — | < 0.2.29 | 0.2.29 | May 21, 2022 | Solana solana_rbpf before 0.2.29 has an addition integer overflow via invalid ELF program headers. elf.rs has a panic via a malformed eBPF program. | ||
| CVE-2022-23066 | — | >= 0.2.26, < 0.2.28 | 0.2.28 | May 9, 2022 | In Solana rBPF versions 0.2.26 and 0.2.27 are affected by Incorrect Calculation which is caused by improper implementation of sdiv instruction. This can lead to the wrong execution path, resulting in huge loss in specific cases. For example, the result of a sdiv instruction may d | ||
| CVE-2021-46102 | — | >= 0.2.14, < 0.2.17 | 0.2.17 | Jan 27, 2022 | From version 0.2.14 to 0.2.16 for Solana rBPF, function "relocate" in the file src/elf.rs has an integer overflow bug because the sym.st_value is read directly from ELF file without checking. If the sym.st_value is rather large, an integer overflow is triggered while calculating |
- CVE-2022-31264May 21, 2022affected < 0.2.29fixed 0.2.29
Solana solana_rbpf before 0.2.29 has an addition integer overflow via invalid ELF program headers. elf.rs has a panic via a malformed eBPF program.
- CVE-2022-23066May 9, 2022affected >= 0.2.26, < 0.2.28fixed 0.2.28
In Solana rBPF versions 0.2.26 and 0.2.27 are affected by Incorrect Calculation which is caused by improper implementation of sdiv instruction. This can lead to the wrong execution path, resulting in huge loss in specific cases. For example, the result of a sdiv instruction may d
- CVE-2021-46102Jan 27, 2022affected >= 0.2.14, < 0.2.17fixed 0.2.17
From version 0.2.14 to 0.2.16 for Solana rBPF, function "relocate" in the file src/elf.rs has an integer overflow bug because the sym.st_value is read directly from ELF file without checking. If the sym.st_value is rather large, an integer overflow is triggered while calculating