CVE-2019-7152

Published: 2019-01-29T00:29Z

Last Modified: 2024-11-21T04:47Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

A heap-based buffer over-read was discovered in wasm::WasmBinaryBuilder::processFunctions() in wasm/wasm-binary.cpp (when calling wasm::WasmBinaryBuilder::getFunctionIndexName) in Binaryen 1.38.22. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by wasm-opt. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt