CVE-2025-8846

CVE-2025-8846 affects NASM Netwide Assembler 2.17rc0, specifically the parse_line function in parser.c. It enables a stack-based buffer overflow via a local exploit. The vulnerability impact is described as high in CVSS metrics (local access, high confidentiality/integrity/availability impact). A...

CVE-2025-8846 NASM Netwide Assember parser.c parse_line stack-based overflow

A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected is the function parseline of the file parser.c. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used...

CVE-2025-8846

A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected is the function parseline of the file parser.c. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used...

AZL-66213 CVE-2025-8844 affecting package nasm 2.16-1

A vulnerability was determined in NASM Netwide Assember 2.17rc0. This vulnerability affects the function parsesmacrotemplate of the file preproc.c. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...

CVE-2025-8844

A vulnerability was determined in NASM Netwide Assember 2.17rc0. This vulnerability affects the function parsesmacrotemplate of the file preproc.c. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...

DEBIAN-CVE-2025-8844

A vulnerability was determined in NASM Netwide Assember 2.17rc0. This vulnerability affects the function parsesmacrotemplate of the file preproc.c. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...

UBUNTU-CVE-2025-8844

A vulnerability was determined in NASM Netwide Assember 2.17rc0. This vulnerability affects the function parsesmacrotemplate of the file preproc.c. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...

CVE-2025-8844

NASM Netwide Assembler 2.17rc0 contains a vulnerability in parse_smacro_template (preproc.c) that triggers a null pointer dereference. The issue requires local access to exploit, and the exploit has been disclosed publicly. Technical details regarding affected versions beyond 2.17rc0 or remediati...

CVE-2025-8844 NASM Netwide Assember preproc.c parse_smacro_template null pointer dereference

A vulnerability was determined in NASM Netwide Assember 2.17rc0. This vulnerability affects the function parsesmacrotemplate of the file preproc.c. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...

CVE-2025-8844

A vulnerability was determined in NASM Netwide Assember 2.17rc0. This vulnerability affects the function parsesmacrotemplate of the file preproc.c. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...

NASM Netwide Assember 安全漏洞

NASM Netwide Assember is an assembler and disassembler from the NASM team. A security vulnerability exists in NASM Netwide Assember version 2.17rc0, which stems from a null pointer dereference in the function parsesmacrotemplate in the file preproc.c. The vulnerability is caused by the presence o...

Linux Distros Unpatched Vulnerability : CVE-2022-0185

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based buffer overflow flaw was found in the way the legacyparseparam function in the Filesystem Context functionality of the Linux kernel verified the...

Linux Distros Unpatched Vulnerability : CVE-2023-3359

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel brcmnvramparse in drivers/nvmem/brcmnvram.c. Lacks for the check of the return value of kzalloc can cause the NULL...

Linux Distros Unpatched Vulnerability : CVE-2023-1194

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds OOB memory read flaw was found in parseleasestate in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. When ...

SUSE CVE-2025-8732

A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function xmlParseSGMLCatalog of the component xmlcatalog. The manipulation leads to uncontrolled recursion. Attacking locally is a requirement. The exploit has been disclosed to...

CVE-2025-8732 libxml2 xmlcatalog xmlParseSGMLCatalog recursion

A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function xmlParseSGMLCatalog of the component xmlcatalog. The manipulation leads to uncontrolled recursion. Attacking locally is a requirement. The exploit has been disclosed to...

The vulnerabilities of the functions mbedtls_pem_read_buffer() and mbedtls_pk_parse() in the Mbed TLS software allow a attacker to cause a service failure or disclose protected information.

The vulnerability of the mbedtlspemreadbuffer and mbedtlspkparse functions in Mbed TLS is related to an off-by-one error. Exploiting this vulnerability can allow a remote attacker to cause service failures or expose protected information...

Linux Distros Unpatched Vulnerability : CVE-2022-50073

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: tap: NULL pointer derefence in devparseheaderprotocol when skb-dev is null Fixes a NULL pointer derefence bug triggered from tap driver. When tapgetuser...

Linux Distros Unpatched Vulnerability : CVE-2025-21996

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/radeon: fix uninitialized size issue in radeonvcecsparse On the off chance that command stream passed from userspace via ioctl call to radeonvcecsparse is...

Linux Distros Unpatched Vulnerability : CVE-2024-51744

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - golang-jwt is a Go implementation of JSON Web Tokens. Unclear documentation of the error behavior in ParseWithClaims can lead to situation where users are...