Main Vulnerability Database SB2023091467

SB2023091467 - Off-by-one in Wasmtime

Published: September 14, 2023 Updated: April 23, 2026

Security Bulletin ID SB2023091467

CSH Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 vulnerability.

1) Off-by-one (CVE-ID: CVE-2023-41880)

The vulnerability allows a remote user to cause incorrect computation results.

The vulnerability exists due to an off-by-one error in the Cranelift code generator for the WebAssembly i64x2.shr_s instruction when compiling WebAssembly on x86_64 with a constant shift amount larger than 32. A remote privileged user can execute a specially crafted WebAssembly program to cause incorrect computation results.

This issue is not an escape from the WebAssembly sandbox and affects only x86_64 hosts.

Remediation

Install update from vendor's website.

References

https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-gw5p-q8mj-p7gh
https://github.com/advisories/GHSA-gw5p-q8mj-p7gh