PT-2019-14374 · Binaryen · Binaryen
Gaintcome
·
Published
2019-08-29
·
Updated
2020-06-08
·
CVE-2019-15758
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Binaryen version 1.38.32
Description
An issue in Binaryen allows for denial-of-service through a crafted input, leading to an Assertion Failure. This occurs due to missing validation rules in asmjs/asmangle.cpp, affecting the wasm::asmangle function in wasm/wasm.cpp.
Recommendations
For Binaryen version 1.38.32, update to a version that includes the necessary validation rules to prevent the Assertion Failure.
Exploit
Fix
DoS
Assertion Failure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Binaryen