MidnightBSD

Advisories for gfx-rs

CVE-2018-13492 MEDIUM

The mintToken function of a smart contract implementation for naga, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
gfx-rs naga -
CVE-2024-36761

naga v0.14.0 was discovered to contain a stack overflow via the component /wgsl/parse/mod.rs.

Products Affected

Vendor Product Version
gfx-rs wgpu *
gfx-rs naga 0.14.0
gfx-rs naga *