CVE-2019-20352

In Netwide Assembler NASM 2.15rc0, a heap-based buffer over-read occurs via a crafted .asm file in settextfree when called from expandonesmacro in asm/preproc.c...

CVE-2019-20352

In Netwide Assembler NASM 2.15rc0, a heap-based buffer over-read occurs via a crafted .asm file in settextfree when called from expandonesmacro in asm/preproc.c...

Heap overflow

In Netwide Assembler NASM 2.15rc0, a heap-based buffer over-read occurs via a crafted .asm file in settextfree when called from expandonesmacro in asm/preproc.c...

UBUNTU-CVE-2019-20352

In Netwide Assembler NASM 2.15rc0, a heap-based buffer over-read occurs via a crafted .asm file in settextfree when called from expandonesmacro in asm/preproc.c...

CVE-2019-20352

In Netwide Assembler NASM 2.15rc0, a heap-based buffer over-read occurs via a crafted .asm file in settextfree when called from expandonesmacro in asm/preproc.c...

CVE-2019-20352

In Netwide Assembler NASM 2.15rc0, a heap-based buffer over-read occurs via a crafted .asm file in settextfree when called from expandonesmacro in asm/preproc.c...

CVE-2019-20352

CVE-2019-20352 affects Netwide Assembler (NASM) 2.15rc0 with a heap-based buffer over-read in set_text_free, triggered when expand_one_smacro processes a crafted .asm file (asm/preproc.c). Exploitation could lead to a crash and, per CVSS3.1, high impact on confidentiality and availability (local,...

Netwide Assembler (NASM) Heap Buffer Overflow Vulnerability

Netwide Assembler NASM is a portable, modular 80x86 and x86-64 assembler. A heap buffer overflow vulnerability exists in settextfree in Netwide Assembler NASM 2.15rc0 when called from expandonesmacro in asm/preproc.c. The vulnerability can be exploited to cause a denial of service via a specially...

DEBIAN-CVE-2019-20334

In Netwide Assembler NASM 2.14.02, stack consumption occurs in expr functions in asm/eval.c. This potentially affects the relationships among expr0, expr1, expr2, expr3, expr4, expr5, and expr6 and stdscan in asm/stdscan.c. This is similar to CVE-2019-6290 and CVE-2019-6291...

CVE-2019-20334

In Netwide Assembler NASM 2.14.02, stack consumption occurs in expr functions in asm/eval.c. This potentially affects the relationships among expr0, expr1, expr2, expr3, expr4, expr5, and expr6 and stdscan in asm/stdscan.c. This is similar to CVE-2019-6290 and CVE-2019-6291...

CVE-2019-20334

In Netwide Assembler NASM 2.14.02, stack consumption occurs in expr functions in asm/eval.c. This potentially affects the relationships among expr0, expr1, expr2, expr3, expr4, expr5, and expr6 and stdscan in asm/stdscan.c. This is similar to CVE-2019-6290 and CVE-2019-6291...

UBUNTU-CVE-2019-20334

In Netwide Assembler NASM 2.14.02, stack consumption occurs in expr functions in asm/eval.c. This potentially affects the relationships among expr0, expr1, expr2, expr3, expr4, expr5, and expr6 and stdscan in asm/stdscan.c. This is similar to CVE-2019-6290 and CVE-2019-6291...

CVE-2019-20334

CVE-2019-20334 affects NASM 2.14.02 with stack consumption in the eval code paths (asm/eval.c) specifically in the expr# functions (expr, rexp, bexpr, cexpr) and related relationships to expr0–expr6 (and stdscan in asm/stdscan.c). The Microsoft/MSRC entry describes a stack-exhaustion DoS caused b...

ATasm Buffer Overflow Vulnerability

ATasm is a command line cross assembler for the 6502 microprocessor A buffer overflow vulnerability exists in the 'getsignedexpression' function of the setparse.c file in ATasm version 1.06. The vulnerability stems from a networked system or product performing operations in memory without properl...

openssl security, bug fix, and enhancement update

1.1.1c-2 - do not try to use EC groups disallowed in FIPS mode in TLS - fix Valgrind regression with constant-time code 1.1.1c-1 - update to the 1.1.1c release 1.1.1b-6 - adjust the default cert pbe algorithm for pkcs12 -export in the FIPS mode 1.1.1b-5 - Fix small regressions related to the reba...

openSUSE Security Update : binutils (openSUSE-2019-2432)

This update for binutils fixes the following issues : binutils was updated to current 2.32 branch jscECO-368. Includes following security fixes : - CVE-2018-17358: Fixed invalid memory access in bfdstabsectionfindnearestline in syms.c bsc1109412 - CVE-2018-17359: Fixed invalid memory access exist...

openSUSE Security Update : binutils (openSUSE-2019-2415)

This update for binutils fixes the following issues : binutils was updated to current 2.32 branch jscECO-368. Includes following security fixes : - CVE-2018-17358: Fixed invalid memory access in bfdstabsectionfindnearestline in syms.c bsc1109412 - CVE-2018-17359: Fixed invalid memory access exist...

Security update for binutils (moderate)

openSUSE Security Update: Security update for binutils Announcement ID: openSUSE-SU-2019:2415-1 Rating: moderate References: 1109412 1109413 1109414 1111996 1112534 1112535 1113247 1113252 1113255 1116827 1118644 1118830 1118831 1120640 1121034 1121035 1121056 1133131 1133232 1141913 1142772...

CVE-2018-0733

Because of an implementation bug the PA-RISC CRYPTOmemcmp function is effectively reduced to only comparing the least significant bit of each byte. This allows an attacker to forge messages that would be considered as authenticated in an amount of tries lower than that guaranteed by the security...

SUSE SLED15 / SLES15 Security Update : binutils (SUSE-SU-2019:2780-1)

This update for binutils fixes the following issues : binutils was updated to current 2.32 branch jscECO-368. Includes following security fixes : CVE-2018-17358: Fixed invalid memory access in bfdstabsectionfindnearestline in syms.c bsc1109412 CVE-2018-17359: Fixed invalid memory access exists in...