/
DirectorySecurity AdvisoriesPricing
Sign in
Security Advisories

CGA-25q2-xqvw-c65c

Published

Last updated

https://images.chainguard.dev/security/CGA-25q2-xqvw-c65c
Package

wadm

RepositoryWolfi
Latest Update
Fixed
Fixed Version

0.19.0-r0

Aliases
  • GHSA-wwq9-3cpr-mm53

Severity

Unknown

References

  • https://github.com/advisories/GHSA-wwq9-3cpr-mm53

Updates

Status

Fixed

Fixed version

0.19.0-r0

Status

Pending upstream fix

Impact

wadm currently depends on two versions of hashbrown - v12.x and v15.x. We can't bump v12.x to remediate this CVE, as the project explicitly depends on it. Waiting for fix from upstream. Ref: https://github.com/wasmCloud/wadm/blob/v0.18.0/Cargo.lock#L1084-L1094.

Status

Under investigation


Safe Source for Open Sourceâ„¢
Contact us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard ContainersChainguard LibrariesChainguard VMsIntegrationsPricing