PT-2022-12535 · Binaryen+1 · Binaryen+1

Zfeixqo

·

Published

2022-01-07

·

Updated

2022-01-13

·

CVE-2021-46054

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Binaryen version 104
Description A Denial of Service issue exists due to an assertion abort in wasm::WasmBinaryBuilder::visitRethrow(wasm::Rethrow*).
Recommendations For Binaryen version 104, consider disabling the visitRethrow() function as a temporary workaround until a patch is available.

Exploit

Fix

DoS

Assertion Failure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-617

Related Identifiers

CVE-2021-46054

Affected Products

Binaryen
Debian