UBUNTU-CVE-2019-7151
- Source
- https://ubuntu.com/security/CVE-2019-7151
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2019/UBUNTU-CVE-2019-7151.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2019-7151
- Related
- Published
- 2019-01-29T00:29:00Z
- Modified
- 2025-04-23T15:12:15Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
- 6.5 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
A NULL pointer dereference was discovered in wasm::Module::getFunctionOrNull in wasm/wasm.cpp in Binaryen 1.38.22. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by wasm-opt.
- References
-
- https://ubuntu.com/security/CVE-2019-7151
- https://github.com/WebAssembly/binaryen/issues/1881
- https://github.com/WebAssembly/binaryen/commit/2127e64f42da55bb5b9b0ab1995b3ca7fc4e0d0b
- https://github.com/WebAssembly/binaryen/commit/85e95e315a8023c46eb804fe80ebc244bcfdae3e
- https://www.cve.org/CVERecord?id=CVE-2019-7151
Affected packages
Ubuntu:20.04:LTS / binaryen
Package
- Name
- binaryen
- Purl
- pkg:deb/ubuntu/binaryen@91-1?arch=source&distro=focal
Ubuntu:22.04:LTS / binaryen
Package
- Name
- binaryen
- Purl
- pkg:deb/ubuntu/binaryen@105-1?arch=source&distro=jammy
Ubuntu:24.10 / binaryen
Package
- Name
- binaryen
- Purl
- pkg:deb/ubuntu/binaryen@108-1?arch=source&distro=oracular
Ubuntu:24.04:LTS / binaryen
Package
- Name
- binaryen
- Purl
- pkg:deb/ubuntu/binaryen@108-1?arch=source&distro=noble