RUSTSEC-2026-0096: Miscompiled guest heap access enables sandbox escape on aarch64 Cranelift


> Miscompiled guest heap access enables sandbox escape on aarch64 Cranelift

| Details             |                                                |
| ------------------- | ---------------------------------------------- |
| Package             | `wasmtime`                      |
| Version             | `38.0.4`                   |
| URL                 | [https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-jhxm-h53p-jm7w](https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-jhxm-h53p-jm7w) |
| Date                | 2026-04-09                         |
| Patched versions    | `>=36.0.7, <37.0.0,>=42.0.2, <43.0.0,>=43.0.1`                  |

This is an entry in the RustSec database for the Wasmtime security advisory
located at
https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-jhxm-h53p-jm7w
For more information see the GitHub-hosted security advisory.

See [advisory page](https://rustsec.org/advisories/RUSTSEC-2026-0096.html) for additional details.


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

RUSTSEC-2026-0096: Miscompiled guest heap access enables sandbox escape on aarch64 Cranelift #6506

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Details
Package	`wasmtime`
Version	`38.0.4`
URL	GHSA-jhxm-h53p-jm7w
Date	2026-04-09
Patched versions	`>=36.0.7, <37.0.0,>=42.0.2, <43.0.0,>=43.0.1`

RUSTSEC-2026-0096: Miscompiled guest heap access enables sandbox escape on aarch64 Cranelift #6506

Description

Metadata

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Issue actions