540 matches found
AZL-35384 CVE-2023-51258 affecting package yasm for versions less than 1.3.0-16
A memory leak issue discovered in YASM v.1.3.0 allows a local attacker to cause a denial of service via the newToken function in the modules/preprocs/nasm/nasm-pp:1512...
DEBIAN-CVE-2023-51258
A memory leak issue discovered in YASM v.1.3.0 allows a local attacker to cause a denial of service via the newToken function in the modules/preprocs/nasm/nasm-pp:1512...
UBUNTU-CVE-2023-51258
A memory leak issue discovered in YASM v.1.3.0 allows a local attacker to cause a denial of service via the newToken function in the modules/preprocs/nasm/nasm-pp:1512...
PT-2024-14080
Name of the Vulnerable Software and Affected Versions YASM version 1.3.0 Description A memory leak issue allows a local attacker to cause a denial of service via the new Token function in the modules/preprocs/nasm/nasm-pp file. Recommendations For YASM version 1.3.0, as a temporary workaround,...
SUSE CVE-2023-49554
Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the dodirective function in the modules/preprocs/nasm/nasm-pp.c component...
SUSE CVE-2023-49558
An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expandmmacparams function in the modules/preprocs/nasm/nasm-pp.c component...
Use After Free
Overview Affected versions of this package are vulnerable to Use After Free via the dodirective function in the modules/preprocs/nasm/nasm-pp.c component. An attacker can cause a denial of service vulnerability. Remediation There is no fixed version for yasm. References - GitHub Issue - Vulnerabl...
AZL-35386 CVE-2023-49558 affecting package yasm 1.3.0-17
An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expandmmacparams function in the modules/preprocs/nasm/nasm-pp.c component...
DEBIAN-CVE-2023-49558
An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expandmmacparams function in the modules/preprocs/nasm/nasm-pp.c component...
AZL-33358 CVE-2023-49558 affecting package yasm 1.3.0-17
An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expandmmacparams function in the modules/preprocs/nasm/nasm-pp.c component...
DEBIAN-CVE-2023-49555
An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expandsmacro function in the modules/preprocs/nasm/nasm-pp.c component...
AZL-35389 CVE-2023-49555 affecting package yasm 1.3.0-17
An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expandsmacro function in the modules/preprocs/nasm/nasm-pp.c component...
DEBIAN-CVE-2023-49554
Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the dodirective function in the modules/preprocs/nasm/nasm-pp.c component...
AZL-35393 CVE-2023-49554 affecting package yasm 1.3.0-17
Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the dodirective function in the modules/preprocs/nasm/nasm-pp.c component...
UBUNTU-CVE-2023-49554
Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the dodirective function in the modules/preprocs/nasm/nasm-pp.c component...
UBUNTU-CVE-2023-49555
An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expandsmacro function in the modules/preprocs/nasm/nasm-pp.c component...
UBUNTU-CVE-2023-49558
An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expandmmacparams function in the modules/preprocs/nasm/nasm-pp.c component...
YASM Security Vulnerabilities
yasm is a completely rewritten Netwide assembler from the yasm open source. A security vulnerability exists in YASM 1.3.0.86.g9def, which stems from the presence of a post-release reuse vulnerability. An attacker can exploit this vulnerability to cause a denial of service DOS via the dodirective...
PT-2024-2670 · Yasm +2 · Yasm +2
Name of the Vulnerable Software and Affected Versions: YASM version 1.3.0.86.g9def Description: The issue in YASM is related to the expand mmac params function, which is associated with an uncontrolled consumption of resources. Exploitation of this issue may allow an attacker to cause a denial of...
PT-2024-2674 · Yasm +2 · Yasm +2
Name of the Vulnerable Software and Affected Versions: YASM version 1.3.0.86.g9def Description: The issue is related to a Use After Free vulnerability in the do directive function, located in the modules/preprocs/nasm/nasm-pp.c component. This vulnerability allows a remote attacker to cause a...