An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasm_intnum_destroy() in libyasm/intnum.c.

...

Linux Distros Unpatched Vulnerability : CVE-2021-33461

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasmintnumdestroy in libyasm/intnum.c. CVE-2021-33461 Note that Nessus relies on the...

OESA-2024-1131 yasm security update

Yasm is a complete rewrite of the NASM assembler under the “new” BSD License. Security Fixes: yasm v1.3.0 was discovered to contain a memory leak via the function yasmintnumcopy at /libyasm/intnum.c.CVE-2023-31975...

OESA-2024-1132 yasm security update

Yasm is a complete rewrite of the NASM assembler under the “new” BSD License. Security Fixes: yasm v1.3.0 was discovered to contain a memory leak via the function yasmintnumcopy at /libyasm/intnum.c.CVE-2023-31975...

OESA-2024-1064 yasm security update

Yasm is a complete rewrite of the NASM assembler under the “new” BSD License. Security Fixes: yasm v1.3.0 was discovered to contain a memory leak via the function yasmintnumcopy at /libyasm/intnum.c.CVE-2023-31975...

OESA-2024-1062 yasm security update

Yasm is a complete rewrite of the NASM assembler under the “new” BSD License. Security Fixes: yasm v1.3.0 was discovered to contain a memory leak via the function yasmintnumcopy at /libyasm/intnum.c.CVE-2023-31975...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in /libyasm/intnum.c and /elf/elf.c, which allows the attacker to cause a denial of service via a crafted file. Remediation A fix was pushed into the master branch but not yet published. References - GitHub Comm...

DEBIAN-CVE-2023-37732

Yasm v1.3.0.78 was found prone to NULL Pointer Dereference in /libyasm/intnum.c and /elf/elf.c, which allows the attacker to cause a denial of service via a crafted file...

yasm v1.3.0 was discovered to contain a memory leak via the function yasm_intnum_copy at /libyasm/intnum.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy.

...

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS via the function yasmintnumcopy at /libyasm/intnum.c. Details Denial of Service DoS describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users. Unlike other...

AZL-26632 CVE-2023-31975 affecting package yasm for versions less than 1.3.0-14

yasm v1.3.0 was discovered to contain a memory leak via the function yasmintnumcopy at /libyasm/intnum.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy...

AZL-35383 CVE-2023-31975 affecting package yasm for versions less than 1.3.0-14

yasm v1.3.0 was discovered to contain a memory leak via the function yasmintnumcopy at /libyasm/intnum.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy...

UBUNTU-CVE-2023-31975

DISPUTED yasm v1.3.0 was discovered to contain a memory leak via the function yasmintnumcopy at /libyasm/intnum.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy...

yasm 安全漏洞

yasm is a completely rewritten Netwide assembler from the yasm open source. A security vulnerability exists in yasm v1.3.0, which stems from a post-release reuse issue in the function yasmintnumcopy in /nasm/nasm-pp.c. The vulnerability is caused by the use of the function yasmintnumcopy...

SUSE CVE-2021-33461

An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasmintnumdestroy in libyasm/intnum.c...

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free in the yasmintnumdestroy function in libyasm/intnum.c. Remediation There is no fixed version for yasm. References - GitHub Gist - GitHub Issue Credit: Clingto...

AZL-10324 CVE-2021-33454 affecting package yasm for versions less than 1.3.0-15

An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in yasmexprgetintnum in libyasm/expr.c...

DEBIAN-CVE-2021-33461

An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasmintnumdestroy in libyasm/intnum.c...

AZL-10331 CVE-2021-33461 affecting package yasm 1.3.0-17

An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasmintnumdestroy in libyasm/intnum.c...

AZL-35371 CVE-2021-33461 affecting package yasm 1.3.0-17

An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasmintnumdestroy in libyasm/intnum.c...