Medium: nasm

Issue Overview: Null pointer dereference in ieeewritefile in nasm 2.16rc0 allows attackers to cause a denial of service crash. CVE-2023-38665 Affected Packages: nasm Issue Correction: Run dnf update nasm --releasever 2023.4.20240611 or dnf update --advisory ALAS2023-2024-642 --releasever...

CVE-2020-24241

In Netwide Assembler NASM 2.15rc10, there is heap use-after-free in saawbytes in nasmlib/saa.c...

CVE-2019-20334

In Netwide Assembler NASM 2.14.02, stack consumption occurs in expr functions in asm/eval.c. This potentially affects the relationships among expr0, expr1, expr2, expr3, expr4, expr5, and expr6 and stdscan in asm/stdscan.c. This is similar to CVE-2019-6290 and CVE-2019-6291...

CVE-2017-17818

In Netwide Assembler NASM 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in pastetokens in asm/preproc.c...

CVE-2017-17814

In Netwide Assembler NASM 2.14rc0, there is a use-after-free in dodirective in asm/preproc.c that will cause a remote denial of service attack...

CVE-2017-17817

In Netwide Assembler NASM 2.14rc0, there is a use-after-free in ppverror in asm/preproc.c that will cause a remote denial of service attack...