109 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-29581
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - yasm 1.3.0.55.g101bc has a segmentation violation in the function deleteToken at modules/preprocs/nasm/nasm-pp.c. NOTE: although a libyasm application could...
Linux Distros Unpatched Vulnerability : CVE-2021-33465
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in expandmmacro in modules/preprocs/nasm/nasm-pp.c. CVE-2021-33465 Note that...
Linux Distros Unpatched Vulnerability : CVE-2023-31725
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - yasm 1.3.0.55.g101bc was discovered to contain a heap-use-after-free via the function expandmmacparams at yasm/modules/preprocs/nasm/nasm-pp.c. CVE-2023-31725...
Linux Distros Unpatched Vulnerability : CVE-2021-33468
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in yasm version 1.3.0. There is a use-after-free in error in modules/preprocs/nasm/nasm-pp.c. CVE-2021-33468 Note that Nessus relies on...
Linux Distros Unpatched Vulnerability : CVE-2021-33464
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in yasm version 1.3.0. There is a heap-buffer-overflow in incfopen in modules/preprocs/nasm/nasm-pp.c. CVE-2021-33464 Note that Nessus...
Linux Distros Unpatched Vulnerability : CVE-2021-33466
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in expandsmacro in modules/preprocs/nasm/nasm-pp.c. CVE-2021-33466 Note that...
Linux Distros Unpatched Vulnerability : CVE-2021-33455
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in dodirective in modules/preprocs/nasm/nasm-pp.c. CVE-2021-33455 Note that...
Linux Distros Unpatched Vulnerability : CVE-2021-33460
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in ifcondition in modules/preprocs/nasm/nasm-pp.c. CVE-2021-33460 Note that...
Linux Distros Unpatched Vulnerability : CVE-2023-49558
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expandmmacparams function in the modules/preprocs/nasm/nasm-pp.c...
Linux Distros Unpatched Vulnerability : CVE-2023-49554
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the dodirective function in the...
A memory leak issue discovered in YASM v.1.3.0 allows a local attacker to cause a denial of service via the new_Token function in the modules/preprocs/nasm/nasm-pp:1512.
...
SUSE CVE-2023-51258
A memory leak issue discovered in YASM v.1.3.0 allows a local attacker to cause a denial of service via the newToken function in the modules/preprocs/nasm/nasm-pp:1512...
CVE-2023-51258
A memory leak issue discovered in YASM v.1.3.0 allows a local attacker to cause a denial of service via the newToken function in the modules/preprocs/nasm/nasm-pp:1512...
DEBIAN-CVE-2023-51258
A memory leak issue discovered in YASM v.1.3.0 allows a local attacker to cause a denial of service via the newToken function in the modules/preprocs/nasm/nasm-pp:1512...
UBUNTU-CVE-2023-51258
A memory leak issue discovered in YASM v.1.3.0 allows a local attacker to cause a denial of service via the newToken function in the modules/preprocs/nasm/nasm-pp:1512...
PT-2024-14080
Name of the Vulnerable Software and Affected Versions YASM version 1.3.0 Description A memory leak issue allows a local attacker to cause a denial of service via the new Token function in the modules/preprocs/nasm/nasm-pp file. Recommendations For YASM version 1.3.0, as a temporary workaround,...
SUSE CVE-2023-49554
Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the dodirective function in the modules/preprocs/nasm/nasm-pp.c component...
SUSE CVE-2023-49558
An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expandmmacparams function in the modules/preprocs/nasm/nasm-pp.c component...
Use After Free
Overview Affected versions of this package are vulnerable to Use After Free via the dodirective function in the modules/preprocs/nasm/nasm-pp.c component. An attacker can cause a denial of service vulnerability. Remediation There is no fixed version for yasm. References - GitHub Issue - Vulnerabl...
AZL-35389 CVE-2023-49555 affecting package yasm 1.3.0-17
An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expandsmacro function in the modules/preprocs/nasm/nasm-pp.c component...