Vyper is a Pythonic Smart Contract Language for the EVM. In affected versions when performing a function call inside a literal struct, there is a memory corruption issue that occurs because of an incorrect pointer to the the top of the stack. This issue has been resolved in version 0.3.0.
References
Link | Resource |
---|---|
https://github.com/vyperlang/vyper/pull/2447 | Patch Third Party Advisory |
https://github.com/vyperlang/vyper/security/advisories/GHSA-xv8x-pr4h-73jv | Third Party Advisory |
Configurations
History
02 Aug 2023, 16:22
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:vyperlang:vyper:*:*:*:*:*:*:*:* | |
First Time |
Vyperlang vyper
Vyperlang |
Information
Published : 2021-10-06 18:15
Updated : 2024-02-28 18:48
NVD link : CVE-2021-41121
Mitre link : CVE-2021-41121
CVE.ORG link : CVE-2021-41121
JSON object : View
Products Affected
vyperlang
- vyper
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer