CVE-2018-8881

🗓️ 20 Mar 2018 23:00:29Reported by mitreType

Netwide Assembler (NASM) 2.13.02rc2 has a heap-based buffer over-read in the function tokenize in asm/preproc.c, related to an unterminated string

Reporter	Title	Published	Views	Family All 28
UbuntuCve	CVE-2018-8881	20 Mar 201800:00	–	ubuntucve
RedhatCVE	CVE-2018-8881	23 Mar 201814:20	–	redhatcve
Cvelist	CVE-2018-8881	20 Mar 201823:00	–	cvelist
Prion	Heap overflow	20 Mar 201823:29	–	prion
NVD	CVE-2018-8881	20 Mar 201823:29	–	nvd
OSV	CVE-2018-8881	20 Mar 201823:29	–	osv
Debian CVE	CVE-2018-8881	20 Mar 201823:29	–	debiancve
Tenable Nessus	EulerOS 2.0 SP5 : nasm (EulerOS-SA-2020-2556)	15 Dec 202000:00	–	nessus
Tenable Nessus	SUSE SLED15 / SLES15 Security Update : nasm (SUSE-SU-2020:1843-1)	9 Jul 202000:00	–	nessus
Tenable Nessus	openSUSE Security Update : nasm (openSUSE-2020-952)	20 Jul 202000:00	–	nessus

Nvd

Node

nasm netwide_assemblerMatch2.13.02rc2

Node

canonical ubuntu_linuxMatch14.04lts

Source	Link
usn	www.usn.ubuntu.com/3694-1/
bugzilla	www.bugzilla.nasm.us/show_bug.cgi
lists	www.lists.opensuse.org/opensuse-security-announce/2020-07/msg00017.html
lists	www.lists.opensuse.org/opensuse-security-announce/2020-07/msg00015.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Mar 2018 23:29Current

6.1Medium risk

Vulners AI Score6.1

CVSS26.8

CVSS37.3

EPSS0.00059

CWE-125