Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
cargo wasmtime Security Advisories
Loading...
Low
Ecosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 11.2
Published: 23 days ago
GSA_kwCzR0hTQS03NWhxLWg2ZzktaDRxNc4AA6jC
Wasmtime vulnerable to panic when using a dropped extenref-typed element segmentEcosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 11.2
Published: 23 days ago
Low
Ecosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: 3 months ago
GSA_kwCzR0hTQS1oODRxLW04cnItM3Y5cc4AA4-6
wasmtime_trap_code C API function has out of bounds write vulnerabilityEcosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: 3 months ago
Low
Ecosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 7.5
Published: 7 months ago
GSA_kwCzR0hTQS1ndzVwLXE4bWotcDdnaM4AA14F
Miscompilation of wasm `i64x2.shr_s` instruction with constant input on x86_64Ecosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 7.5
Published: 7 months ago
Low
Ecosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 13.2
Published: 12 months ago
GSA_kwCzR0hTQS1jaDg5LTVnNDUtcXdjN84AAy_z
Undefined Behavior in Rust runtime functionsEcosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 13.2
Published: 12 months ago
Critical
Ecosystems: cargo
Packages: cranelift-codegen, wasmtime
Source: GitHub Advisory Database
Blast Radius: 35.3
Published: about 1 year ago
GSA_kwCzR0hTQS1mZjRwLTd4cnEtcTVyOM4AAyAY
wasmtime vulnerable to guest-controlled out-of-bounds read/write on x86_64Ecosystems: cargo
Packages: cranelift-codegen, wasmtime
Source: GitHub Advisory Database
Blast Radius: 35.3
Published: about 1 year ago
Low
Ecosystems: cargo
Packages: cranelift-codegen, wasmtime
Source: GitHub Advisory Database
Blast Radius: 10.9
Published: about 1 year ago
GSA_kwCzR0hTQS14bTY3LTU4N3EtcjJ2d84AAyAX
wasmtime vulnerable to miscompilation of `i8x16.select` with the same inputs on x86_64Ecosystems: cargo
Packages: cranelift-codegen, wasmtime
Source: GitHub Advisory Database
Blast Radius: 10.9
Published: about 1 year ago
High
Ecosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 29.2
Published: over 1 year ago
GSA_kwCzR0hTQS13aDZ3LTM4MjgtZzlxZs4AAv0W
Wasmtime may have data leakage between instances in the pooling allocatorEcosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 29.2
Published: over 1 year ago
Moderate
Ecosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 20.0
Published: over 1 year ago
GSA_kwCzR0hTQS00NG1yLTh2bW0td2poZ84AAv0V
Wasmtime out of bounds read/write with zero-memory-pages configurationEcosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 20.0
Published: over 1 year ago
Moderate
Ecosystems: cargo
Packages: cranelift-codegen, wasmtime
Source: GitHub Advisory Database
Blast Radius: 20.8
Published: almost 2 years ago
GSA_kwCzR0hTQS03ZjZ4LWp3aDUtbTlyNM4AAtkN
Cranelift vulnerable to miscompilation of constant values in division on AArch64Ecosystems: cargo
Packages: cranelift-codegen, wasmtime
Source: GitHub Advisory Database
Blast Radius: 20.8
Published: almost 2 years ago
Moderate
Ecosystems: cargo
Packages: cranelift-codegen, wasmtime
Source: GitHub Advisory Database
Blast Radius: 22.6
Published: almost 2 years ago
GSA_kwCzR0hTQS01ZmhqLWczcDMtcHE5Z84AAtg8
Wasmtime vulnerable to Use After Free with `externref`sEcosystems: cargo
Packages: cranelift-codegen, wasmtime
Source: GitHub Advisory Database
Blast Radius: 22.6
Published: almost 2 years ago
Moderate
Ecosystems: cargo
Packages: cranelift-codegen, wasmtime
Source: GitHub Advisory Database
Blast Radius: 16.9
Published: almost 2 years ago
GSA_kwCzR0hTQS1qcXdjLWM0OXItNHcyeM4AAtBw
Miscompilation of `i8x16.swizzle` and `select` with v128 inputsEcosystems: cargo
Packages: cranelift-codegen, wasmtime
Source: GitHub Advisory Database
Blast Radius: 16.9
Published: almost 2 years ago
High
Ecosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 27.5
Published: about 2 years ago
GSA_kwCzR0hTQS1nd2M5LTM0OHgtcXd2Ms03ng
Use after free in WasmtimeEcosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 27.5
Published: about 2 years ago
Moderate
Ecosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 17.3
Published: about 2 years ago
GSA_kwCzR0hTQS04OHhxLXc4Y3EteGZnN80sbg
Invalid drop of partially-initialized instances in the pooling instance allocator for modules with defined `externref` globalsEcosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 17.3
Published: about 2 years ago
Moderate
Ecosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 21.4
Published: over 2 years ago
GSA_kwCzR0hTQS1xODc5LTlnOTUtNTZteM0V3Q
Wrong type for `Linker`-define functions when used across two `Engine`sEcosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 21.4
Published: over 2 years ago
Moderate
Ecosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 21.4
Published: over 2 years ago
GSA_kwCzR0hTQS00ODczLTM2aDktd3Y0Oc0V3A
Out-of-bounds read/write and invalid free with `externref`s and GC safepoints in WasmtimeEcosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 21.4
Published: over 2 years ago
Moderate
Ecosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 21.4
Published: over 2 years ago
GSA_kwCzR0hTQS12NGNwLWg5NHItbTd4Zs0V2w
Use after free passing `externref`s to Wasm in WasmtimeEcosystems: cargo
Packages: wasmtime
Source: GitHub Advisory Database
Blast Radius: 21.4
Published: over 2 years ago
Statistics
Advisories: 18,124
Packages: 8,239
Repositories: 1
Ecosystems: 12
Packages: 8,239
Repositories: 1
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
openssl-src
26
ckb
22
wasmtime
16
rusqlite
16
deno
11
surrealdb
8
openssl
7
libpulse-binding
7
hyper
7
sized-chunks
6
Simple-Wayland-HotKey-Daemon
6
smallvec
6
cranelift-codegen
6
xcb
5
cargo
5
messagepack-rs
5
frontier
5
lock_api
5
comrak
5
bottlerocket/update-operator
5
tauri
4
raw-cpuid
4
tremor-script
4
pleaser
4
evm
4
deno_runtime
4
tokio
4
actix-web
4
slice-deque
3
nanorand
3
h2
3
arr
3
id-map
3
ammonia
3
grin
3
apache-avro
3
flatbuffers
3
fltk
3
crossbeam
3
s2n-quic
3
routinator
3
anoncreds-clsignatures
3
ursa
3
crossbeam-channel
3
arrow
3
solana_rbpf
3
acc_reader
3
cgc
3
apollo-router
3
quiche
3
tough
3
bronzedb-protocol
2
buffoon
2
rulex
2
lru
2
futures-util
2
gfx-auxil
2
ash
2
bite
2
ozone
2
binjs_io
2
http
2
columnar
2
flumedb
2
mopa
2
traitobject
2
stack_dst
2
simple_asn1
2
trust-dns-server
2
futures-task
2
internment
2
v9
2
signal-simple
2
tiny_future
2
pnet
2
vec-const
2
simple-slab
2
pywasm3
2
wasm3
2
hyper-staticfile
2
tectonic_xdv
2
metrics-util
2
spin
2
ordnung
2
reorder
2
rocket
2
libgit2-sys
2
multiqueue
2
vm-memory
2
Deno
2
crayon
2
cache
2
image
2
ncurses
2
zerocopy
2
rand_core
2
toodee
2
slock
2
evm-core
2
libp2p-core
2
csv-sniffer
2
opcua
2
ticketed_lock
2
russh
2
gix-transport
2
rsa
2
rdiff
2
rust-embed
2
failure
2
streebog
2
bumpalo
2
arenavec
2
parc
2
derive-com-impl
2
abi_stable
2
memoffset
2
slack-morphism
2
svix
2
net2
2
libsecp256k1
2
generator
2
tower-http
2
nix
2
async-h1
2
molecule
2
crypto2
2
mio
2
oqs
2
coreos-installer
2
abomonation
2
sha2
2
sodiumoxide
2
tar
2
ntpd
2
array-macro
2
actix-http
2
lettre
2
syncpool
2
inventory
2
iced-x86
1
magick.net-q16-x64
1
magick.net-q16-hdri-anycpu
1
magick.net-q16-anycpu
1
webp
1
bam
1
Pillow
1
diesel
1
github.com/chai2010/webp
1
SkiaSharp
1
electron
1
libwebp-sys
1
libwebp-sys2
1
actix-utils
1
tiny_http
1
byte_struct
1
cocoon
1
security-framework
1
num-bigint
1
linked-hash-map
1
portaudio-rs
1
telemetry
1
av-data
1
calamine
1
pqc_kyber
1
late-static
1
stackvector
1
containers
1
better-macro
1
noise_search
1
model
1
pancurses
1
beef
1
async-coap
1
bigint
1
try-mutex
1
serde_v8
1
atom
1
magick.net-q8-x64
1
magick.net-q8-openmp-x64
1
serde_cbor
1
rmp-serde
1
aliyundrive-webdav
1
yaml-rust
1
vmm-sys-util
1
libdav1d-sys
1
transpose
1
whoami
1
wasmi
1
lzf
1
snow
1
mdBook
1
trillium-client
1
trillium-http
1
mail-internals
1
rustls-webpki
1
portaudio
1
aliyundrive-webdav
1
matrix-sdk
1
cassandra-cpp
1
tauri-cli
1
Filter by Repository