28 matches found
JLSEC-2026-591
An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasmintnumdestroy in libyasm/intnum.c...
An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasm_intnum_destroy() in libyasm/intnum.c.
...
Linux Distros Unpatched Vulnerability : CVE-2021-33461
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasmintnumdestroy in libyasm/intnum.c. CVE-2021-33461 Note that Nessus relies on the...
The vulnerability of the yasm_intnum_copy function in the YASM assembler allows a hacker to cause a service failure.
The vulnerability of the yasmintnumcopy function in the YASM assembler is related to the lack of memory release after the effective lifespan of the function. Exploiting this vulnerability can allow an attacker to cause a service failure...
OESA-2024-1132 yasm security update
Yasm is a complete rewrite of the NASM assembler under the “new” BSD License. Security Fixes: yasm v1.3.0 was discovered to contain a memory leak via the function yasmintnumcopy at /libyasm/intnum.c.CVE-2023-31975...
OESA-2024-1131 yasm security update
Yasm is a complete rewrite of the NASM assembler under the “new” BSD License. Security Fixes: yasm v1.3.0 was discovered to contain a memory leak via the function yasmintnumcopy at /libyasm/intnum.c.CVE-2023-31975...
OESA-2024-1064 yasm security update
Yasm is a complete rewrite of the NASM assembler under the “new” BSD License. Security Fixes: yasm v1.3.0 was discovered to contain a memory leak via the function yasmintnumcopy at /libyasm/intnum.c.CVE-2023-31975...
OESA-2024-1062 yasm security update
Yasm is a complete rewrite of the NASM assembler under the “new” BSD License. Security Fixes: yasm v1.3.0 was discovered to contain a memory leak via the function yasmintnumcopy at /libyasm/intnum.c.CVE-2023-31975...
The vulnerability of the /libyasm/intnum.c and /elf.c components of the Yasm assembler allows a hacker to trigger a service failure.
The vulnerability in the components /libyasm/intnum.c and /elf/elf.c of the Yasm assembler is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure through the created file...
NULL Pointer Dereference
Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in /libyasm/intnum.c and /elf/elf.c, which allows the attacker to cause a denial of service via a crafted file. Remediation A fix was pushed into the master branch but not yet published. References - GitHub Comm...
DEBIAN-CVE-2023-37732
Yasm v1.3.0.78 was found prone to NULL Pointer Dereference in /libyasm/intnum.c and /elf/elf.c, which allows the attacker to cause a denial of service via a crafted file...
yasm v1.3.0 was discovered to contain a memory leak via the function yasm_intnum_copy at /libyasm/intnum.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy.
...
Denial of Service (DoS)
Overview Affected versions of this package are vulnerable to Denial of Service DoS via the function yasmintnumcopy at /libyasm/intnum.c. Details Denial of Service DoS describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users. Unlike other...
AZL-26632 CVE-2023-31975 affecting package yasm for versions less than 1.3.0-14
yasm v1.3.0 was discovered to contain a memory leak via the function yasmintnumcopy at /libyasm/intnum.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy...
AZL-35383 CVE-2023-31975 affecting package yasm for versions less than 1.3.0-14
yasm v1.3.0 was discovered to contain a memory leak via the function yasmintnumcopy at /libyasm/intnum.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy...
UBUNTU-CVE-2023-31975
DISPUTED yasm v1.3.0 was discovered to contain a memory leak via the function yasmintnumcopy at /libyasm/intnum.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy...
yasm 安全漏洞
yasm is a completely rewritten Netwide assembler from the yasm open source. A security vulnerability exists in yasm v1.3.0, which stems from a post-release reuse issue in the function yasmintnumcopy in /nasm/nasm-pp.c. The vulnerability is caused by the use of the function yasmintnumcopy...
SUSE CVE-2021-33461
An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasmintnumdestroy in libyasm/intnum.c...
Use After Free
Overview Affected versions of this package are vulnerable to Use After Free in the yasmintnumdestroy function in libyasm/intnum.c. Remediation There is no fixed version for yasm. References - GitHub Gist - GitHub Issue Credit: Clingto...
AZL-10324 CVE-2021-33454 affecting package yasm for versions less than 1.3.0-15
An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in yasmexprgetintnum in libyasm/expr.c...