Security Advisory

CVE-2025-69261

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-30 19:43:59

Last updated 2026-01-02 15:16:16

Assigner GitHub_M

State PUBLISHED

Description

WasmEdge is a WebAssembly runtime. Prior to version 0.16.0-alpha.3, a multiplication in `WasmEdge/include/runtime/instance/memory.h` can wrap, causing `checkAccessBound()` to incorrectly allow the access. This leads to a segmentation fault. Version 0.16.0-alpha.3 contains a patch for the issue.

← Browse all CVEs View on cve.org ↗