Skip to content

Commit 420d241

Browse files
gzurlgzurl
authored
Merge pull request #39 from vmware-labs/wasmtime-security-6.0.1
fix: Update Wasmtime to 6.0.1 and update other dependencies
2 parents 996c479 + cc540fb commit 420d241

File tree

3 files changed

+335
-204
lines changed

3 files changed

+335
-204
lines changed

CHANGELOG.md

Lines changed: 16 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -4,6 +4,22 @@
44

55
-
66

7+
## 0.10.3 (2023/03/08)
8+
9+
This is a security update to bump Wasmtime to 6.0.1 given the two CVE published (one critical) and addressed in:
10+
- [GHSA-ff4p-7xrq-q5r8 (CVE-2023-26489)](https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-ff4p-7xrq-q5r8)
11+
- [GHSA-xm67-587q-r2vw (CVE-2023-27477)](https://github.com/bytecodealliance/wasmtime/security/advisories/GHSA-xm67-587q-r2vw)
12+
13+
14+
### `libwasm_runtime.so`
15+
- Dependencies:
16+
- Bump version dependencies:
17+
- `wasmtime` to `6.0.1`.
18+
- `anyhow` to `1.0.69`.
19+
- `once_cell` to `1.17.1`.
20+
- Updated `cargo.lock` dependencies via `cargo update`.
21+
22+
723
## 0.10.2 (2023/01/09)
824

925
### `libwasm_runtime.so`

0 commit comments

Comments
 (0)