Source: wabt Version: 1.0.32-1 Severity: important Tags: security upstream Forwarded: https://github.com/WebAssembly/wabt/issues/2180 X-Debbugs-Cc: car...@debian.org, Debian Security Team <t...@security.debian.org>
Hi, The following vulnerability was published for wabt. CVE-2023-30300[0]: | An issue in the component hang.wasm of WebAssembly 1.0 causes an | infinite loop. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures) id in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2023-30300 https://www.cve.org/CVERecord?id=CVE-2023-30300 [1] https://github.com/WebAssembly/wabt/issues/2180 [2] https://github.com/WebAssembly/wabt/pull/2183 [3] https://github.com/WebAssembly/wabt/commit/2d77bda4034a719fe1a2eaf1d51593eb351ecb4c Please adjust the affected versions in the BTS as needed. Regards, Salvtore