diff options
| author | Robert Scott <code@humanleg.org.uk> | 2022-09-25 18:02:35 +0100 |
|---|---|---|
| committer | Robert Scott <code@humanleg.org.uk> | 2022-09-25 18:02:35 +0100 |
| commit | 25dbfa36fd9c32fee1d15386cc358dfc3885bfd9 (patch) | |
| tree | 251859664e95c9e868ec696774a0f412e0759954 | |
| parent | 2ff1d7bf8a92b6468d3647684aa03945fbbe3b08 (diff) | |
wasm3: add many knownVulnerabilities
| -rw-r--r-- | pkgs/development/interpreters/wasm3/default.nix | 13 |
1 files changed, 13 insertions, 0 deletions
diff --git a/pkgs/development/interpreters/wasm3/default.nix b/pkgs/development/interpreters/wasm3/default.nix index b16dc78ac08e0..036010e1356ac 100644 --- a/pkgs/development/interpreters/wasm3/default.nix +++ b/pkgs/development/interpreters/wasm3/default.nix @@ -29,5 +29,18 @@ stdenv.mkDerivation rec { platforms = platforms.all; maintainers = with maintainers; [ malbarbo ]; license = licenses.mit; + knownVulnerabilities = [ + # wasm3 expects all wasm code to be pre-validated, any users + # should be aware that running unvalidated wasm will potentially + # lead to RCE until upstream have added a builtin validator + "CVE-2022-39974" + "CVE-2022-34529" + "CVE-2022-28990" + "CVE-2022-28966" + "CVE-2021-45947" + "CVE-2021-45946" + "CVE-2021-45929" + "CVE-2021-38592" + ]; }; } |