10 matches found
Linux Distros Unpatched Vulnerability : CVE-2017-10686
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Netwide Assembler NASM 2.14rc0, there are multiple heap use after free vulnerabilities in the tool nasm. The related heap is allocated in the token function...
SUSE CVE-2017-10686
In Netwide Assembler NASM 2.14rc0, there are multiple heap use after free vulnerabilities in the tool nasm. The related heap is allocated in the token function and freed in the detoken function called by ppgetline - it is used again at multiple positions later that could cause multiple damages. F...
Huawei EulerOS: Security Advisory for nasm (EulerOS-SA-2021-1332)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for nasm (EulerOS-SA-2021-1216)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP3 : nasm (EulerOS-SA-2021-1100)
According to the versions of the nasm package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Netwide Assembler NASM 2.14rc15 has a heap-based buffer over-read in expandmmacparams in asm/preproc.c for insufficient input.CVE-2018-19214 -...
Debian: Security Advisory (DLA-1041-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 25 : nasm (2017-a1fe6d2b86)
Fix use-after-free and heap buffer overflow vulnerabilities CVE-2017-10686, CVE-2017-11111 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possibl...
Fedora 26 : nasm (2017-6186f95179)
Fix use-after-free and heap buffer overflow vulnerabilities CVE-2017-10686, CVE-2017-11111 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possibl...
openSUSE Security Update : nasm (openSUSE-2017-901)
This update for nasm fixes the following issues : Security issues fixed : - CVE-2017-10686: Multiple heap use after free vulnerabilities. bsc1047936 - CVE-2017-11111: Heap-based buffer overflow and application crash. bsc1047925 This update was imported from the SUSE:SLE-12:Update update project...
CVE-2017-10686
CVE-2017-10686 affects NASM 2.14rc0, with multiple heap use-after-free vulnerabilities in token(), detoken(), and pp_getline() that can corrupt data structures, cause double frees, and trigger out-of-bounds writes. The documented impact includes remote code execution potential, via a compromised ...