NASM Netwide Assember nasm.c assemble_file stack-based overflow

...

AZL-66261 CVE-2025-8845 affecting package nasm 2.16.01-1

A vulnerability was identified in NASM Netwide Assember 2.17rc0. This issue affects the function assemblefile of the file nasm.c. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be...

CVE-2022-44370

NASM v2.16 was discovered to contain a heap buffer overflow in the component quoteforpmake asm/nasm.c:856...

CVE-2022-44370

CVE-2022-44370 affects NASM v2.16, with a heap buffer overflow in the quote_for_pmake() function (asm/nasm.c:856). Connected advisories (Gentoo GLSA-202312-09 and EulerOS-SA entries) reference this vulnerability, and vendor advisories suggest upgrading NASM to a fixed release (Gentoo: >=nasm-2...

CVE-2018-1000667

NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains a memory corruption crashed of nasm when handling a crafted file due to function assemblefileinname, dependptr at asm/nasm.c:482. vulnerability in function assemblefileinname, dependptr at asm/nasm.c:482. that can result in...

Memory corruption

NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains a memory corruption crashed of nasm when handling a crafted file due to function assemblefileinname, dependptr at asm/nasm.c:482. vulnerability in function assemblefileinname, dependptr at asm/nasm.c:482. that can result in...