21 matches found
SUSE CVE-2017-17817
In Netwide Assembler NASM 2.14rc0, there is a use-after-free in ppverror in asm/preproc.c that will cause a remote denial of service attack...
Integer overflow
Netwide Assembler NASM 2.14rc0 has an endless while loop in the assemblefile function of asm/nasm.c because of a globallineno integer overflow...
CVE-2018-10316
Netwide Assembler NASM 2.14rc0 has an endless while loop in the assemblefile function of asm/nasm.c because of a globallineno integer overflow...
CVE-2018-10016
Netwide Assembler NASM 2.14rc0 has a division-by-zero vulnerability in the expr5 function in asm/eval.c via a malformed input file...
CVE-2017-17816
In Netwide Assembler NASM 2.14rc0, there is a use-after-free in ppgetline in asm/preproc.c that will cause a remote denial of service attack...
CVE-2017-17818
In Netwide Assembler NASM 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in pastetokens in asm/preproc.c...
CVE-2017-17814
In Netwide Assembler NASM 2.14rc0, there is a use-after-free in dodirective in asm/preproc.c that will cause a remote denial of service attack...
Design/Logic Flaw
In Netwide Assembler NASM 2.14rc0, there is a use-after-free in ppverror in asm/preproc.c that will cause a remote denial of service attack...
CVE-2017-17817
In Netwide Assembler NASM 2.14rc0, there is a use-after-free in ppverror in asm/preproc.c that will cause a remote denial of service attack...
Design/Logic Flaw
In Netwide Assembler NASM 2.14rc0, there is a use-after-free in the pplistonemacro function in asm/preproc.c that will cause a remote denial of service attack, related to mishandling of line-syntax errors...
CVE-2017-17818
In Netwide Assembler NASM 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in pastetokens in asm/preproc.c...
CVE-2017-17813
CVE-2017-17813 affects Netwide Assembler (NASM) 2.14rc0, with a use-after-free in pp_list_one_macro in asm/preproc.c that leads to remote denial of service via mishandling of line-syntax errors. The incident is documented across multiple sources in the connected documents (e.g., Nessus/OpenVAS re...
CVE-2017-17810
In Netwide Assembler NASM 2.14rc0, there is a "SEGV on unknown address" that will cause a remote denial of service attack, because asm/preproc.c mishandles macro calls that have the wrong number of arguments...
CVE-2017-17815
In Netwide Assembler NASM 2.14rc0, there is an illegal address access in ismmacro in asm/preproc.c that will cause a remote denial of service attack, because of a missing check for the relationship between minimum and maximum parameter counts...
CVE-2017-17818
In Netwide Assembler NASM 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in pastetokens in asm/preproc.c...
CVE-2017-17818
In Netwide Assembler NASM 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in pastetokens in asm/preproc.c...
CVE-2017-17814
In Netwide Assembler NASM 2.14rc0, there is a use-after-free in dodirective in asm/preproc.c that will cause a remote denial of service attack...
CVE-2017-17813
In Netwide Assembler NASM 2.14rc0, there is a use-after-free in the pplistonemacro function in asm/preproc.c that will cause a remote denial of service attack, related to mishandling of line-syntax errors...
CVE-2017-11111
NASM 2.14rc0 is affected. The root cause is in asm/preproc.c where a strcpy in paste_tokens leads to a heap-based buffer overflow, enabling remote denial of service (and potentially other impact) when processing crafted input. Related CVEs note a similar heap-based overflow and DoS. Mitigation in...
CVE-2017-10686
In Netwide Assembler NASM 2.14rc0, there are multiple heap use after free vulnerabilities in the tool nasm. The related heap is allocated in the token function and freed in the detoken function called by ppgetline - it is used again at multiple positions later that could cause multiple damages. F...