CVE-2025-8842

A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected by this issue is the function dodirective of the file preproc.c. The manipulation leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public and may be used...

CVE-2025-8842 NASM Netwide Assember preproc.c do_directive use after free

A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected by this issue is the function dodirective of the file preproc.c. The manipulation leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public and may be used...

CVE-2025-8842

CVE-2025-8842 affects NASM Netwide Assembler 2.17rc0, specifically the do_directive function in preproc.c. The issue is a use-after-free vulnerability that requires local access to exploit. The public exploit is noted in the sources. The connected documents confirm the vulnerability’s existence a...

NASM Netwide Assember 安全漏洞

NASM Netwide Assember is an assembler and disassembler from the NASM team. A security vulnerability exists in NASM Netwide Assember version 2.17rc0, which originates from a heap buffer overflow in the function machinenodeadstrip in the file outmacho.c. The vulnerability is caused by a heap buffer...

NASM Netwide Assember 安全漏洞

NASM Netwide Assember is an assembler and disassembler from the NASM team. A security vulnerability exists in NASM Netwide Assember version 2.17rc0, which originates from a stack buffer overflow in the function parseline in the file parser.c. The vulnerability is caused by a stack buffer overflow...

NASM Netwide Assember 安全漏洞

NASM Netwide Assember is an assembler and disassembler from the NASM team. A security vulnerability exists in NASM Netwide Assember version 2.17rc0, which stems from a null pointer dereference in the function parsesmacrotemplate in the file preproc.c. The vulnerability is caused by the presence o...

NASM Netwide Assember 安全漏洞

NASM Netwide Assember is an assembler and disassembler from the NASM team. A security vulnerability exists in NASM Netwide Assember version 2.17rc0, which originates from a stack buffer overflow in the function assemblefile in the file nasm.c. The vulnerability is caused by a stack buffer overflo...

NASM Netwide Assember 安全漏洞

NASM Netwide Assember is an assembler and disassembler from the NASM team. A security vulnerability exists in NASM Netwide Assember version 2.17rc0, which stems from a post-release reuse issue in the function dodirective in the file preproc.c. The vulnerability is caused by the use of the functio...

[SECURITY] Fedora 41 Update: yasm-1.3.0^20250625git121ab15-1.fc41

Yasm is a complete rewrite of the NASM assembler under the "new" BSD License some portions are under other licenses, see COPYING for details. It is designed from the ground up to allow for multiple assembler syntaxes to be supported eg, NASM, TASM, GAS, etc. in addition to multiple output object...

ROS-20250619-16

YASM assembler vulnerability is related to NULL pointer dereferencing via the yasmsectionbcsappend function in section.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

OESA-2025-1585 nasm security update

NASM is the Netwide Assembler, a free portable assembler for the Intel 80x86 microprocessor series, using primarily the traditional Intel instruction mnemonics and syntax. It also provides tools in RDOFF binary format, includes linker, library manager, loader, and information dump. Security Fixes...

yasm 安全漏洞

yasm is a completely rewritten Netwide assembler from the yasm open source. A security vulnerability exists in yasm that stems from the presence of a null pointer dereference in the yasmsectionbcsappend function...

CVE-2022-20418

In pickStartSeq of AAVCAssembler.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-12...

CVE-2020-0128

In addPacket of AMPEG4ElementaryAssembler, there is an out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges required. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID:...

Linux Distros Unpatched Vulnerability : CVE-2019-6290

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An infinite recursion issue was discovered in eval.c in Netwide Assembler NASM through 2.14.02. There is a stack exhaustion problem resulting from infinite...

Linux Distros Unpatched Vulnerability : CVE-2018-8881

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Netwide Assembler NASM 2.13.02rc2 has a heap-based buffer over-read in the function tokenize in asm/preproc.c, related to an unterminated string. CVE-2018-8881...

Linux Distros Unpatched Vulnerability : CVE-2018-10016

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Netwide Assembler NASM 2.14rc0 has a division-by-zero vulnerability in the expr5 function in asm/eval.c via a malformed input file. CVE-2018-10016 Note that...

Linux Distros Unpatched Vulnerability : CVE-2017-17818

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Netwide Assembler NASM 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in...

Linux Distros Unpatched Vulnerability : CVE-2017-17820

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Netwide Assembler NASM 2.14rc0, there is a use-after-free in pplistonemacro in asm/preproc.c that will lead to a remote denial of service attack, related to...

Linux Distros Unpatched Vulnerability : CVE-2018-16517

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - asm/labels.c in Netwide Assembler NASM is prone to NULL Pointer Dereference, which allows the attacker to cause a denial of service via a crafted file...