An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasm_intnum_destroy() in libyasm/intnum.c.

...

Linux Distros Unpatched Vulnerability : CVE-2021-33461

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasmintnumdestroy in libyasm/intnum.c. CVE-2021-33461 Note that Nessus relies on the...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in /libyasm/intnum.c and /elf/elf.c, which allows the attacker to cause a denial of service via a crafted file. Remediation A fix was pushed into the master branch but not yet published. References - GitHub Comm...

Denial of Service (DoS)

Overview Affected versions of this package are vulnerable to Denial of Service DoS via the function yasmintnumcopy at /libyasm/intnum.c. Details Denial of Service DoS describes a family of attacks, all aimed at making a system inaccessible to its intended and legitimate users. Unlike other...

SUSE CVE-2021-33461

An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasmintnumdestroy in libyasm/intnum.c...

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free in the yasmintnumdestroy function in libyasm/intnum.c. Remediation There is no fixed version for yasm. References - GitHub Gist - GitHub Issue Credit: Clingto...

DEBIAN-CVE-2021-33461

An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasmintnumdestroy in libyasm/intnum.c...

yasm 资源管理错误漏洞

yasm is a completely rewritten Netwide assembler from the yasm open source. A security vulnerability exists in yasm version 1.3.0, which stems from post-release reuse of the yasmintnumdestroy function in libyasm/intnum.c. The vulnerability is caused by the use of the yasmintnumdestroy function in...