CVE-2020-35859 – lucet-runtime-internals

Package

Manager: cargo
Name: lucet-runtime-internals
Vulnerable Version: >=0 <0.4.3 || >=0.5.0 <0.5.1

Severity

Level: Critical

CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N

EPSS: 0.00433 pctl0.61951

Details

Out of bounds access in lucet-runtime-internals An embedding using affected versions of lucet-runtime configured to use non-default Wasm globals sizes of more than 4KiB, or compiled in debug mode without optimizations, could leak data from the signal handler stack to guest programs. This can potentially cause data from the embedding host to leak to guest programs or cause corruption of guest program memory. This flaw was resolved by correcting the sigstack allocation logic.

Metadata

Created: 2021-08-25T20:46:16Z
Modified: 2023-06-13T20:06:37Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/08/GHSA-3933-wvjf-pcvc/GHSA-3933-wvjf-pcvc.json
CWE IDs: ["CWE-125", "CWE-787"]
Alternative ID: GHSA-3933-wvjf-pcvc
Finding: F111
Auto approve: 1