Lucene search

Ubuntu.comUB:CVE-2021-46055

HistoryJan 10, 2022 - 12:00 a.m.

CVE-2021-46055

2022-01-1000:00:00

ubuntu.com

denial of service

binaryen 104

assertion abort

wasm

wasmbinarybuilder

visitrethrow

rethrow

unix

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

21.7%

JSON

A Denial of Service vulnerability exists in Binaryen 104 due to an
assertion abort in wasm::WasmBinaryBuilder::visitRethrow(wasm::Rethrow*).

OSVersionArchitecturePackageVersionFilename
ubuntu20.04noarchbinaryen< anyUNKNOWN
ubuntu22.04noarchbinaryen< anyUNKNOWN
ubuntu24.04noarchbinaryen< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	20.04	noarch	binaryen	< any	UNKNOWN
ubuntu	22.04	noarch	binaryen	< any	UNKNOWN
ubuntu	24.04	noarch	binaryen	< any	UNKNOWN

References

github.com/WebAssembly/binaryen/issues/4413

launchpad.net/bugs/cve/CVE-2021-46055

nvd.nist.gov/vuln/detail/CVE-2021-46055

security-tracker.debian.org/tracker/CVE-2021-46055

www.cve.org/CVERecord?id=CVE-2021-46055

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

21.7%

JSON

Related for UB:CVE-2021-46055