Skip to content

Instantly share code, notes, and snippets.

View haruki3hhh's full-sized avatar
🏠
Working from home

haruki3hhh

🏠
Working from home
View GitHub Profile
@haruki3hhh
haruki3hhh / gist:bd228e6dcaf8c18140e1074964912b39
Created November 7, 2024 00:10
Advisory for CVE-2024-25431
> [Discoverer]
> Ziyi Guo, L4Nce, Quhe
> [Description]
> An issue in bytecodealliance wasm-micro-runtime before v.b3f728c and
> fixed in commit 06df58f allows a remote attacker to escalate privileges
> via a crafted file to the check_was_abi_compatibility function
>
> ------------------------------------------
@haruki3hhh
haruki3hhh / report.md
Created November 8, 2024 18:07
Advisory for CVE-2024-27527

Discoverers: Ziyi Guo, quhe, L4Nce

Details:

[Suggested description] wasm3 139076a is vulnerable to Denial of Service (DoS).

[VulnerabilityType Other] DoS

@haruki3hhh
haruki3hhh / report.md
Created November 8, 2024 18:11
Advisory for CVE-2024-27528

Discoverers: Ziyi Guo, quhe, L4Nce

Details

[Suggested description] wasm3 139076a suffers from Invalid Memory Read, leading to DoS and potential Code Execution.

[VulnerabilityType Other] Evil/invlid memory dereference

@haruki3hhh
haruki3hhh / report.md
Created November 8, 2024 18:17
Advisory for CVE-2024-27529

Discoverers: Ziyi Guo, quhe, L4Nce

Details:

[Suggested description] wasm3 139076a contains memory leaks in Read_utf8

[VulnerabilityType Other] memory leaks >

@haruki3hhh
haruki3hhh / report.md
Last active November 8, 2024 18:22
Advisory for CVE-2024-27530

Discoverers: Ziyi Guo, quhe, L4Nce

Details:

[Suggested description] wasm3 139076a contains a Use-After-Free in ForEachModule.

[VulnerabilityType Other] Use-After-Free >

@haruki3hhh
haruki3hhh / report.md
Last active November 8, 2024 18:24
Advisory for CVE-2024-27532

Discoverers: Ziyi Guo, quhe, L4Nce

Details:

[Suggested description] wasm-micro-runtime (aka WebAssembly Micro Runtime or WAMR) 06df58f is vulnerable to NULL Pointer Dereference in function `block_type_get_result_types.

[VulnerabilityType Other]

@haruki3hhh
haruki3hhh / report.md
Created November 8, 2024 18:46
Advisory for CVE-2024-35410

Discoverers: Ziyi Guo

Details:

[Suggested description] wac commit 385e1 was discovered to contain a heap overflow via the interpret function at /wac-asan/wa.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted wasm file.

[Vulnerability Type]

@haruki3hhh
haruki3hhh / report.md
Created November 8, 2024 18:48
Advisory for CVE-2024-35418

Discoverers: Ziyi Guo

Details:

[Suggested description] wac commit 385e1 was discovered to contain a heap overflow via the setup_call function at /wac-asan/wa.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted wasm file.

[Vulnerability Type]

@haruki3hhh
haruki3hhh / gist:8b9e1922083abef33a9024017eb2b9fe
Created November 8, 2024 18:49
Advisory for CVE-2024-35419
# Discoverers: Ziyi Guo
# Details:
> [Suggested description]
> wac commit 385e1 was discovered to contain a heap overflow via the
> load_module function at /wac-asan/wa.c. This vulnerability allows
> attackers to cause a Denial of Service (DoS) via a crafted wasm file.
>
> ------------------------------------------
>
> [Vulnerability Type]
@haruki3hhh
haruki3hhh / report.md
Created November 8, 2024 18:51
Advisory for CVE-2024-35420

Discoverers: Ziyi Guo

Details:

[Suggested description] wac commit 385e1 was discovered to contain a heap overflow.

[VulnerabilityType Other] DoS >