Vulnerability Description
Wasmtime is a standalone runtime for WebAssembly. Prior to versions 2.0.2 and 1.0.2, there is a bug in Wasmtime's implementation of its pooling instance allocator where when a linear memory is reused for another instance the initial heap snapshot of the prior instance can be visible, erroneously to the next instance. This bug has been patched and users should upgrade to Wasmtime 2.0.2 and 1.0.2. Other mitigations include disabling the pooling allocator and disabling the `memory-init-cow`.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bytecodealliance | Wasmtime | < 1.0.2 |
Related Weaknesses (CWE)
References
- https://github.com/bytecodealliance/wasmtime/commit/2614f2e9d2d36805ead8a8da0fa0PatchThird Party Advisory
- https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-wh6w-3828-Third Party Advisory
- https://github.com/bytecodealliance/wasmtime/commit/2614f2e9d2d36805ead8a8da0fa0PatchThird Party Advisory
- https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-wh6w-3828-Third Party Advisory
FAQ
What is CVE-2022-39393?
CVE-2022-39393 is a vulnerability with a CVSS score of 8.6 (HIGH). Wasmtime is a standalone runtime for WebAssembly. Prior to versions 2.0.2 and 1.0.2, there is a bug in Wasmtime's implementation of its pooling instance allocator where when a linear memory is reused ...
How severe is CVE-2022-39393?
CVE-2022-39393 has been rated HIGH with a CVSS base score of 8.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-39393?
Check the references section above for vendor advisories and patch information. Affected products include: Bytecodealliance Wasmtime.