Astra Linux - уязвимость в nasm

There is a use-after-free in asm/preproc.c function ppgetline in Netwide Assembler NASM 2.14rc16, which will cause a denial of service during a line-number increment attempt...

Astra Linux - уязвимость в nasm

In NASM 2.15.04rc3, there is a double-free vulnerability in pptokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7...

In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7.

...

Linux Distros Unpatched Vulnerability : CVE-2023-49555

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expandsmacro function in the modules/preprocs/nasm/nasm-pp.c...

UBUNTU-CVE-2023-49555

An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expandsmacro function in the modules/preprocs/nasm/nasm-pp.c component...

DEBIAN-CVE-2023-31725

yasm 1.3.0.55.g101bc was discovered to contain a heap-use-after-free via the function expandmmacparams at yasm/modules/preprocs/nasm/nasm-pp.c...

SUSE CVE-2017-17811

In Netwide Assembler NASM 2.14rc0, there is a heap-based buffer overflow that will cause a remote denial of service attack, related to a strcpy in pastetokens in asm/preproc.c, a similar issue to CVE-2017-11111...

SUSE CVE-2017-17816

In Netwide Assembler NASM 2.14rc0, there is a use-after-free in ppgetline in asm/preproc.c that will cause a remote denial of service attack...

UBUNTU-CVE-2018-19755

There is an illegal address access at asm/preproc.c function: ismmacro in Netwide Assembler NASM 2.14rc16 that will cause a denial of service out-of-bounds array access because a certain conversion can result in a negative integer...

UBUNTU-CVE-2018-19214

Netwide Assembler NASM 2.14rc15 has a heap-based buffer over-read in expandmmacparams in asm/preproc.c for insufficient input...

DEBIAN-CVE-2017-17813

In Netwide Assembler NASM 2.14rc0, there is a use-after-free in the pplistonemacro function in asm/preproc.c that will cause a remote denial of service attack, related to mishandling of line-syntax errors...

Netwide Assembler 'find_cc()' Function Illegal Address Access Vulnerability

Netwide Assembler NASM is a Linux-based assembler that creates binaries and writes bootloaders. A security vulnerability in the 'findcc' function in the asm/preproc.c file in NASM version 2.14rc0 stems from the program's failure to validate pointers associated with skipwhite calls. A remote...

UBUNTU-CVE-2017-17818

In Netwide Assembler NASM 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in pastetokens in asm/preproc.c...