CNNVD-202512-1362 Information
Dec 09, 2025
cve
CNNVD ID
CNNVD-202512-1362
Related CVE
- CNNVD Published: 2025-12-09
Description (Chinese)
Wasmi是Wasmi Labs开源的一个用于嵌入式系统的WebAssembly解释器。 Wasmi 0.41.0版本、0.41.1版本、0.42.0版本至0.47.1版本、0.50.0版本至0.51.2版本和1.0.0版本存在资源管理错误漏洞,该漏洞源于线性内存实现存在缺陷,可能导致释放后重用。
Description (English)
Wasmi is a WebAssembly interpreter for embedded systems, an open source of Wasmi Labs. Wasmi 0.41.0, 0.41.1, 0.42.0 to 0.47.1, 0.50.0 to 0.51.2 and 1.0.0 have resource management error gaps, which stem from deficiencies in linear memory realization and may lead to reuse after release.
Hazard Level
Medium
Vulnerability Type
资源管理错误
Affected Vendor
Wasmi Labs
Published
2025-12-09
Last Modified
2026-02-24
References
https://github.com/wasmi-labs/wasmi/security/advisories/GHSA-g4v2-cjqp-rfmq
Patch
https://github.com/wasmi-labs/wasmi/releases
Share on: