{"id":"RUSTSEC-2021-0110","summary":"Multiple Vulnerabilities in Wasmtime","details":"* [Use after free passing `externref`s to Wasm in\n  Wasmtime](https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-v4cp-h94r-m7xf)\n\n* [Out-of-bounds read/write and invalid free with `externref`s and GC safepoints\n  in\n  Wasmtime](https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-4873-36h9-wv49)\n\n* [Wrong type for `Linker`-define functions when used across two\n  `Engine`s](https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-q879-9g95-56mx)","aliases":["CVE-2021-39216","CVE-2021-39218","CVE-2021-39219","GHSA-4873-36h9-wv49","GHSA-q879-9g95-56mx","GHSA-v4cp-h94r-m7xf","PYSEC-2021-320","PYSEC-2021-321","PYSEC-2021-322"],"modified":"2024-03-15T00:05:20.369060Z","published":"2021-09-17T12:00:00Z","database_specific":{"license":"CC0-1.0"},"references":[{"type":"PACKAGE","url":"https://crates.io/crates/wasmtime"},{"type":"ADVISORY","url":"https://rustsec.org/advisories/RUSTSEC-2021-0110.html"},{"type":"ADVISORY","url":"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-v4cp-h94r-m7xf"},{"type":"ADVISORY","url":"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-4873-36h9-wv49"},{"type":"ADVISORY","url":"https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-q879-9g95-56mx"}],"affected":[{"package":{"name":"wasmtime","ecosystem":"crates.io","purl":"pkg:cargo/wasmtime"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0.0.0-0"},{"fixed":"0.30.0"}]}],"ecosystem_specific":{"affects":{"os":[],"arch":[],"functions":["wasmtime::Linker::func_new","wasmtime::Linker::func_wrap","wasmtime::Store::gc"]},"affected_functions":null},"database_specific":{"informational":null,"cvss":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H","source":"https://github.com/rustsec/advisory-db/blob/osv/crates/RUSTSEC-2021-0110.json","categories":["memory-corruption","memory-exposure"]}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H"}]}