Vulnerabilities > Solanalabs > High

DATE CVE VULNERABILITY TITLE RISK
2022-05-21 CVE-2022-31264 Integer Overflow or Wraparound vulnerability in Solanalabs Rbpf 0.2.14/0.2.15/0.2.16
Solana solana_rbpf before 0.2.29 has an addition integer overflow via invalid ELF program headers.
network
low complexity
solanalabs CWE-190
7.5
7.5
2022-01-27 CVE-2021-46102 Integer Overflow or Wraparound vulnerability in Solanalabs Rbpf 0.2.14/0.2.15/0.2.16
From version 0.2.14 to 0.2.16 for Solana rBPF, function "relocate" in the file src/elf.rs has an integer overflow bug because the sym.st_value is read directly from ELF file without checking.
network
low complexity
solanalabs CWE-190
7.5
7.5