Описание
Duplicate Advisory: CosmWasm affected by arithmetic overflows
Duplicate Advisory
This advisory has been withdrawn because it is a duplicate of GHSA-8724-5xmm-w5xq. This link is maintained to preserve external references.
Original Description
The cosmwasm-std crate before 2.0.2 for Rust allows integer overflows that cause incorrect contract calculations.
Пакеты
Наименование
cosmwasm-std
rust
Затронутые версииВерсия исправления
>= 1.3.0, < 1.4.4
1.4.4
Наименование
cosmwasm-std
rust
Затронутые версииВерсия исправления
>= 1.5.0, < 1.5.4
1.5.4
3.7 Low
CVSS3
Дефекты
CWE-190
3.7 Low
CVSS3
Дефекты
CWE-190