Zhongyinglou

**Name of the Vulnerable Software and Affected Versions** WAVM versions prior to 2018-07-26 **Description** A crafted file sent to the WebAssembly Virtual Machine may cause a denial of service (application crash) or possibly have unspecified other impact because of a "heap-buffer-overflow" condition in FunctionValidationContext::popAndValidateOperand(). **Recommendations** For versions prior to 2018-07-26, update to a version released after 2018-07-26 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** WAVM versions prior to 2018-07-26 **Description** A denial of service (application crash) or possibly other unspecified impacts can occur when a crafted file is sent to the WebAssembly Virtual Machine. This happens because a certain `new allocator` allocate call fails. **Recommendations** For versions prior to 2018-07-26, update to a version released after 2018-07-26 to resolve the issue.