2 matches found
AZL-35396 CVE-2023-29582 affecting package yasm 1.3.0-17
yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via the function parseexpr1 at /nasm/nasm-parse.c. Note: This has been disputed by third parties who argue this is a bug and not a security issue because yasm is a standalone program not designed to run untrusted code...
CVE-2023-29582
CVE-2023-29582 concerns a stack overflow in yasm 1.3.0.55.g101bc triggered by the function parse_expr1 in /nasm/nasm-parse.c. The issue is explicitly described across multiple feeds as a stack overflow arising from the parse_expr1 path; several sources note that some third parties dispute this as...