745 matches found
DEBIAN-CVE-2018-10254
Netwide Assembler NASM 2.13 has a stack-based buffer over-read in the disasm function of the disasm/disasm.c file. Remote attackers could leverage this vulnerability to cause a denial of service or possibly have unspecified other impact via a crafted ELF file...
CVE-2018-10016
Netwide Assembler NASM 2.14rc0 has a division-by-zero vulnerability in the expr5 function in asm/eval.c via a malformed input file...
CVE-2018-10016
Netwide Assembler NASM 2.14rc0 has a division-by-zero vulnerability in the expr5 function in asm/eval.c via a malformed input file...
UBUNTU-CVE-2018-10016
Netwide Assembler NASM 2.14rc0 has a division-by-zero vulnerability in the expr5 function in asm/eval.c via a malformed input file...
CVE-2018-10016
Netwide Assembler NASM 2.14rc0 has a division-by-zero vulnerability in the expr5 function in asm/eval.c via a malformed input file...
DEBIAN-CVE-2018-10016
Netwide Assembler NASM 2.14rc0 has a division-by-zero vulnerability in the expr5 function in asm/eval.c via a malformed input file...
Design/Logic Flaw
Netwide Assembler NASM 2.14rc0 has a division-by-zero vulnerability in the expr5 function in asm/eval.c via a malformed input file...
CVE-2018-10016
Netwide Assembler NASM 2.14rc0 has a division-by-zero vulnerability in the expr5 function in asm/eval.c via a malformed input file...
CVE-2018-10016
CVE-2018-10016 : Netwide Assembler (NASM) 2.14rc0 has a division-by-zero in the expr5 function (asm/eval.c) triggered by a malformed input file. The vulnerability is in NASM’s evaluation path and is described with a CVSS base score of 5.5 (MEDIUM) for a local, low‑complexity to exploit vector. Th...
Netwide Assembler De-Zero Vulnerability
Netwide Assembler NASM is a portable, modular 80x86 and x86-64 assembler. A divide-by-zero vulnerability exists in the expr5 function in asm/eval.c in Netwide Assembler NASM 2.14rc0. An attacker can exploit this vulnerability via a malformed input file to cause a divide-by-zero error...
CVE-2018-0733
Because of an implementation bug the PA-RISC CRYPTOmemcmp function is effectively reduced to only comparing the least significant bit of each byte. This allows an attacker to forge messages that would be considered as authenticated in an amount of tries lower than that guaranteed by the security...
Design/Logic Flaw
Because of an implementation bug the PA-RISC CRYPTOmemcmp function is effectively reduced to only comparing the least significant bit of each byte. This allows an attacker to forge messages that would be considered as authenticated in an amount of tries lower than that guaranteed by the security...
CVE-2018-0733
Because of an implementation bug the PA-RISC CRYPTOmemcmp function is effectively reduced to only comparing the least significant bit of each byte. This allows an attacker to forge messages that would be considered as authenticated in an amount of tries lower than that guaranteed by the security...
CVE-2018-0733
OpenSSL CVE-2018-0733 targets PA-RISC on HP-UX, where the PA-RISC CRYPTO_memcmp implementation is buggy and effectively compares only the least significant bit of each byte. This can allow forging messages to be accepted as authentic, reducing the effort needed for an attack. The vulnerability is...
Netwide Assembler Heap Buffer Over-Read Vulnerability
Netwide Assembler NASM is a portable, modular 80x86 and x86-64 assembler. A heap buffer over-read vulnerability exists in the tokenize function in asm/preproc.c in Netwide Assembler NASM 2.13.02rc2, for which there is currently no detailed vulnerability description...
Netwide Assembler Buffer Out-of-Bounds Read Vulnerability
Netwide Assembler NASM is a Linux-based assembler that creates binaries and writes bootloaders. A buffer out-of-bounds read vulnerability exists in the 'parseline' function of the asm/parser.c file in NASM version 2.13.02rc2, for which there is currently no detailed vulnerability description...
Netwide Assembler Stack Buffer Overflow Vulnerability
Netwide Assembler NASM is a portable, modular 80x86 and x86-64 assembler. A stack buffer overflow vulnerability exists in the ieeeshr function in asm/float.c in Netwide Assembler NASM 2.13.02rc2, for which there is currently no detailed vulnerability description...
CVE-2018-8882
Netwide Assembler NASM 2.13.02rc2 has a stack-based buffer under-read in the function ieeeshr in asm/float.c via a large shift value...
DEBIAN-CVE-2018-8883
Netwide Assembler NASM 2.13.02rc2 has a buffer over-read in the parseline function in asm/parser.c via uncontrolled access to nasmregflags...
DEBIAN-CVE-2018-8881
Netwide Assembler NASM 2.13.02rc2 has a heap-based buffer over-read in the function tokenize in asm/preproc.c, related to an unterminated string...