Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2021-33462HistoryJul 26, 2022 - 1:15 p.m.
CVE-2021-33462
2022-07-2613:15:09
Debian Security Bug Tracker
security-tracker.debian.org
15
yasm
use-after-free
expr_traverse_nodes_post
libyasm/expr.c
cve-2021-33462
unix
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
23.8%
An issue was discovered in yasm version 1.3.0. There is a use-after-free in expr_traverse_nodes_post() in libyasm/expr.c.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | yasm | <= 1.3.0-4 | yasm_1.3.0-4_all.deb |
| Debian | 11 | all | yasm | <= 1.3.0-2.1 | yasm_1.3.0-2.1_all.deb |
| Debian | 999 | all | yasm | <= 1.3.0-5 | yasm_1.3.0-5_all.deb |
| Debian | 13 | all | yasm | <= 1.3.0-5 | yasm_1.3.0-5_all.deb |
Related
cvelist
cvelist
CVE-2021-33462
2022-07-26 12:52:54
cnvd
cnvd
yasm expr_traverse_nodes_post function denial of service vulnerability
2022-07-28 00:00:00
ubuntucve
ubuntucve
CVE-2021-33462
2022-07-26 00:00:00
osv
osv
CVE-2021-33462
2022-07-26 13:15:09
alpinelinux
alpinelinux
CVE-2021-33462
2022-07-26 13:15:09
prion
prion
Design/Logic Flaw
2022-07-26 13:15:00
nvd
nvd
CVE-2021-33462
2022-07-26 13:15:09
cve
cve
CVE-2021-33462
2022-07-26 13:15:09
cbl_mariner
cbl_mariner
CVE-2021-33462 affecting package yasm 1.3.0-15
2024-09-20 09:11:59
CVE-2021-33462 affecting package yasm 1.3.0-14
2024-09-20 09:11:54
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
23.8%
Related for DEBIANCVE:CVE-2021-33462