OSV-2022-588

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/wasmtime/OSV-2022-588.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2022-588

Published

2022-07-19T00:00:07.311785Z

Modified

2022-07-19T00:00:07.312090Z

Summary

Heap-use-after-free in wasmtime_runtime::externref::gc::hcbc8e23ae41614fa

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=49171

Crash type: Heap-use-after-free WRITE 8
Crash state:
wasmtime_runtime::externref::gc::hcbc8e23ae41614fa
wasmtime_fuzzing::oracles::table_ops::_$u7b$$u7b$closure$u7d$$u7d$::hd207e5ffb69
wasmtime::func::Func::invoke::ha3b06e1b5875adc9

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=49171

Affected packages

OSS-Fuzz / wasmtime

Package

Name: wasmtime
Purl: pkg:generic/wasmtime

Affected ranges

Type: GIT
Repo: https://github.com/bytecodealliance/wasmtime
Events: Introduced

08a60a0f082a68149218f4c82da04b39fac59611

Fixed

2154c63de94e0372bca5a596c3eaf90147c922d1

Ecosystem specific

{
    "severity": "HIGH"
}