745 matches found
openssl security update
1.0.2k-16.0.1.el76.1 - Bump release for rebuild. 1.0.2k-16.1 - use SHA-256 in FIPS RSA pairwise key check - fix CVE-2018-5407 - EC signature local timing side-channel key extraction 1.0.2k-16 - fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA - fix incorrect error message on...
CVE-2019-8343
In Netwide Assembler NASM 2.14.02, there is a use-after-free in pastetokens in asm/preproc.c...
DEBIAN-CVE-2019-8343
In Netwide Assembler NASM 2.14.02, there is a use-after-free in pastetokens in asm/preproc.c...
Design/Logic Flaw
In Netwide Assembler NASM 2.14.02, there is a use-after-free in pastetokens in asm/preproc.c...
CVE-2019-8343
In Netwide Assembler NASM 2.14.02, there is a use-after-free in pastetokens in asm/preproc.c...
CVE-2019-8343
In Netwide Assembler NASM 2.14.02, there is a use-after-free in pastetokens in asm/preproc.c...
CVE-2019-8343
In Netwide Assembler NASM 2.14.02, there is a use-after-free in pastetokens in asm/preproc.c...
UBUNTU-CVE-2019-8343
In Netwide Assembler NASM 2.14.02, there is a use-after-free in pastetokens in asm/preproc.c...
CVE-2019-8343
In Netwide Assembler NASM 2.14.02, there is a use-after-free in pastetokens in asm/preproc.c...
CVE-2019-8343
In Netwide Assembler NASM 2.14.02, there is a use-after-free in pastetokens in asm/preproc.c...
PT-2019-18977 · Netwide +2 · Netwide Assembler +2
Name of the Vulnerable Software and Affected Versions: Netwide Assembler NASM version 2.14.02 Description: The issue is related to a use-after-free in the paste tokens function located in asm/preproc.c. This indicates a memory management problem where memory is accessed after it has been freed,...
Buffer overflow
A buffer over-read exists in the function crc64ib in crc64.c in nasmlib in Netwide Assembler NASM 2.14rc16. A crafted asm input can cause segmentation faults, leading to denial-of-service...
CVE-2019-7147
CVE-2019-7147 describes a buffer over-read in the function crc64ib in crc64.c of NASM (nasmlib) 2.14rc16. A crafted assembly input can trigger segmentation faults, causing denial of service (DoS). Connected docs confirm the vulnerable component and the DoS impact, but do not provide a patch/versi...
Stack overflow
An infinite recursion issue was discovered in eval.c in Netwide Assembler NASM through 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in certain scenarios involving lots of '' characters. Remote attackers could leverage...
CVE-2019-6290
An infinite recursion issue was discovered in eval.c in Netwide Assembler NASM through 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in certain scenarios involving lots of '' characters. Remote attackers could leverage...
CVE-2019-6291
An issue was discovered in the function expr6 in eval.c in Netwide Assembler NASM through 2.14.02. There is a stack exhaustion problem caused by the expr6 function making recursive calls to itself in certain scenarios involving lots of '!' or '+' or '-' characters. Remote attackers could leverage...
DEBIAN-CVE-2019-6291
An issue was discovered in the function expr6 in eval.c in Netwide Assembler NASM through 2.14.02. There is a stack exhaustion problem caused by the expr6 function making recursive calls to itself in certain scenarios involving lots of '!' or '+' or '-' characters. Remote attackers could leverage...
UBUNTU-CVE-2019-6291
An issue was discovered in the function expr6 in eval.c in Netwide Assembler NASM through 2.14.02. There is a stack exhaustion problem caused by the expr6 function making recursive calls to itself in certain scenarios involving lots of '!' or '+' or '-' characters. Remote attackers could leverage...
UBUNTU-CVE-2019-6290
An infinite recursion issue was discovered in eval.c in Netwide Assembler NASM through 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in certain scenarios involving lots of '' characters. Remote attackers could leverage...
PT-2019-18078 · Netwide +2 · Netwide Assembler +2
Name of the Vulnerable Software and Affected Versions: Netwide Assembler NASM versions prior to 2.14.03 Description: A stack exhaustion problem exists due to the expr6 function making recursive calls to itself in certain scenarios involving lots of '!' or '+' or '-' characters. This could allow...