21 matches found
EUVD-2023-52114
Malicious code in bioql PyPI...
An infinite recursion issue was discovered in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in certain scenarios involving lots of '{' characters. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted asm file.
...
PT-2025-21907 · Git +1 · Quickjs
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: The software suffers from a use-of-uninitialized-value issue. The crash state involves JS FreeRuntime, occurring within fuzz eval.c during async func init...
CVE-2023-48025
Liblisp through commit 4c65969 was discovered to contain a out-of-bounds-read vulnerability in unsigned getlengthlispcellt x at eval.c...
Out-of-bounds
Liblisp through commit 4c65969 was discovered to contain a out-of-bounds-read vulnerability in unsigned getlengthlispcellt x at eval.c...
CVE-2023-48025
Liblisp through commit 4c65969 was discovered to contain a out-of-bounds-read vulnerability in unsigned getlengthlispcellt x at eval.c...
SUSE CVE-2019-6291
An issue was discovered in the function expr6 in eval.c in Netwide Assembler NASM through 2.14.02. There is a stack exhaustion problem caused by the expr6 function making recursive calls to itself in certain scenarios involving lots of '!' or '+' or '-' characters. Remote attackers could leverage...
CVE-2023-0054
An out-of-bounds write flaw was found in Vim, in the dostringsub function in the eval.c file. The issue occurs because of an invalid memory access due to a missing check of the return value of the vimregsub function when a specially crafted input is processed. This flaw allows an attacker who can...
CVE-2022-4293
A floating point exception flaw was found in Vim's numdivide function of the eval.c file. This issue occurs when dividing the largest negative number by -1. This could allow an attacker to trick a user into opening a specially crafted file, triggering an application to crash and leading to a deni...
Floating point exception in function num_divide at eval
Floating point exception in function numdivide at eval.c:70...
Access violation near NULL on destination operand eval.c:2603:37 in segmentation fault
Description Access violation near NULL on destination operand eval.c:2603:37 in segmentation fault Proof of Concept Faulting Frame: eval1 @ 0x0000000000d9e9d2: in /root/vim/src/vim Disassembly: 0x0000000000d9e9bd: mov rax,r14 0x0000000000d9e9c0: shr rax,0x3 0x0000000000d9e9c4: mov al,BYTE PTR...
Denial Of Service (DoS)
vim/vim is vulnerable to denial of service. The vulnerability exists due to a null pointer dereference in eval.c which allows an attacker to cause an application crash...
Denial Of Service (DoS)
kernel is vulnerable to denial of service DoS. The vulnerability exists through a use-after-free in arch/x86/lib/insn-eval.c...
CVE-2019-13233
In arch/x86/lib/insn-eval.c in the Linux kernel before 5.1.9, there is a use-after-free for access to an LDT entry because of a race condition between modifyldt and a BR exception for an MPX bounds violation...
CVE-2019-6290
An infinite recursion issue was discovered in eval.c in Netwide Assembler NASM through 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in certain scenarios involving lots of '' characters. Remote attackers could leverage...
CVE-2019-6290
An infinite recursion issue was discovered in eval.c in Netwide Assembler NASM through 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in certain scenarios involving lots of '' characters. Remote attackers could leverage...
DEBIAN-CVE-2019-6291
An issue was discovered in the function expr6 in eval.c in Netwide Assembler NASM through 2.14.02. There is a stack exhaustion problem caused by the expr6 function making recursive calls to itself in certain scenarios involving lots of '!' or '+' or '-' characters. Remote attackers could leverage...
Netwide Assembler (NASM) Denial of Service Vulnerability
Netwide Assembler NASM is a Linux-based assembler that creates binaries and writes bootloaders. A security vulnerability exists in the 'expr6' function of the eval.c file in NASM 2.14.02 and earlier versions. A remote attacker can exploit this vulnerability to cause a denial of service with the...
Netwide Assembler (NASM) Denial of Service Vulnerability (CNVD-2019-01857)
Netwide Assembler NASM is a Linux-based assembler that creates binaries and writes bootloaders. A security vulnerability exists in the eval.c file in NASM 2.14.02 and earlier versions. A remote attacker can exploit this vulnerability to cause a denial of service infinite recursion and stack...
CVE-2018-10016
Netwide Assembler NASM 2.14rc0 has a division-by-zero vulnerability in the expr5 function in asm/eval.c via a malformed input file...