Defending Buffer Overflows in WebAssembly: A Transpiler Approach

Weiqi Feng

arXiv:2604.03859·cs.CR·April 7, 2026

Defending Buffer Overflows in WebAssembly: A Transpiler Approach

Weiqi Feng

PDF

TL;DR

This paper introduces a transpiler that enhances WebAssembly binaries with security features like stack canaries and ASLR to prevent buffer overflows, addressing vulnerabilities from source languages.

Contribution

A novel transpiler approach that automatically adds buffer overflow protections to WebAssembly binaries, improving runtime security.

Findings

01

Transpiler successfully inserts stack canaries and ASLR into WebAssembly binaries.

02

Enhanced binaries demonstrate increased resistance to buffer overflow exploits.

03

Method provides a practical security enhancement for WebAssembly applications.

Abstract

WebAssembly is quickly becoming a popular compilation target for a variety of code. However, vulnerabilities in the source languages translate to vulnerabilities in the WebAssembly binaries. This work proposes a methodology and a WebAssembly transpiler to prevent buffer overflows in the unmanaged memory of the WebAssembly runtime. The transpiler accepts a WebAssembly binary and adds stack canaries and Address Space Layout Randomization (ASLR) to protect against buffer overflows.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.