YASM Security Vulnerabilities

yasm is a completely rewritten Netwide assembler from the yasm open source. A security vulnerability exists in YASM version 1.3.0.86.g9def, which stems from a Denial of Service DOS vulnerability in the expandsmacro function in the /preprocs/nasm/nasm-pp.c component...

YASM Security Vulnerabilities

yasm is a completely rewritten Netwide assembler from the yasm open source. A security vulnerability exists in YASM version 1.3.0.86.g9def, which originated from allowing an attacker to cause a denial of service DOS via the expandmmacparams function in the /preprocs/nasm/nasm-pp.c component...

CVE-2023-52262

outdoorbits little-backup-box aka Little Backup Box before f39f91c allows remote attackers to execute arbitrary code because the PHP extract function is used for untrusted input...

[SECURITY] Fedora 39 Update: libclc-17.0.2-1.fc39

libclc is an open source, BSD licensed implementation of the library requirements of the OpenCL C programming language, as specified by the OpenCL 1.1 Specification. The following sections of the specification impose library requirements: 6.1: Supported Data Types 6.2.3: Explicit Conversions...

Number withdrawn

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. This CVE number has been withdrawn...

Instant CSS < 1.2.2 - Theme/CSS/Minify/Preprocessor Data Update via CSRF

Description The plugin does not have CSRF checks when updating its Theme, CSS, Minify and Preprocessor data, which could allow attackers to make logged in admins perform such actions via CSRF attacks...

UBUNTU-CVE-2020-21686

A stack-use-after-scope issue discovered in expandmmacparams function in preproc.c in nasm before 2.15.04 allows remote attackers to cause a denial of service via crafted asm file...

PT-2023-11507 · Nasm +2 · Nasm +2

Name of the Vulnerable Software and Affected Versions: nasm version 2.14.02 Description: A Use After Free issue in the new Token function in asm/preproc.c allows attackers to cause a denial of service via a crafted nasm command. Recommendations: For nasm version 2.14.02, consider disabling the ne...

nasm 安全漏洞

Nasm is an open source programming tool software by The Nasm Development Team team. A security vulnerability previously existed in nasm version 2.15.04, which stemmed from a buffer overflow problem found in the Expandmmacparams function of preproc.c. The vulnerability was caused by the use of the...

Juniper Networks Junos OS EX 安全漏洞

Juniper Networks Junos OS EX is a Juniper Networks network operating system for the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Networks Junos OS EX, which is caused by a PHP external variab...

DEBIAN-CVE-2023-31725

yasm 1.3.0.55.g101bc was discovered to contain a heap-use-after-free via the function expandmmacparams at yasm/modules/preprocs/nasm/nasm-pp.c...

AZL-26738 CVE-2023-31725 affecting package yasm 1.3.0-17

yasm 1.3.0.55.g101bc was discovered to contain a heap-use-after-free via the function expandmmacparams at yasm/modules/preprocs/nasm/nasm-pp.c...

yasm 资源管理错误漏洞

yasm is a completely rewritten Netwide assembler from the yasm open source. A security vulnerability exists in yasm version 1.3.0.55.g101bc, which originates from reuse after heap release via the function expandmmacparams in yasm/modules/preprocs/nasm/nasm-pp.c contains...

yasm 安全漏洞

yasm is a completely rewritten Netwide assembler from the yasm open source. A security vulnerability exists in yasm version 1.3.0.55.g101bc, which stems from a segmentation violation via the inclusion of the function dodirective in /nasm/nasm-pp.c. The vulnerability is caused by the inclusion of...

yasm 安全漏洞

yasm is a completely rewritten Netwide assembler from the yasm open source. A security vulnerability exists in yasm version 1.3.0.55.g101bc, which stems from a segmentation violation via the inclusion of the function expandmmacparams in /nasm/nasm-pp.c. The vulnerability is caused by the inclusio...

CVE-2023-31973

yasm v1.3.0 was discovered to contain a use after free via the function expandmmacparams at /nasm/nasm-pp.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy...

DEBIAN-CVE-2023-29581

yasm 1.3.0.55.g101bc has a segmentation violation in the function deleteToken at modules/preprocs/nasm/nasm-pp.c. NOTE: although a libyasm application could become unavailable if this were exploited, the vendor's position is that there is no security relevance because there is either supposed to ...

AZL-35387 CVE-2023-29581 affecting package yasm 1.3.0-17

yasm 1.3.0.55.g101bc has a segmentation violation in the function deleteToken at modules/preprocs/nasm/nasm-pp.c. NOTE: although a libyasm application could become unavailable if this were exploited, the vendor's position is that there is no security relevance because there is either supposed to ...

CVE-2023-29581

yasm 1.3.0.55.g101bc has a segmentation violation in the function deleteToken at modules/preprocs/nasm/nasm-pp.c. NOTE: although a libyasm application could become unavailable if this were exploited, the vendor's position is that there is no security relevance because there is either supposed to ...

AZL-26166 CVE-2023-29581 affecting package yasm 1.3.0-17

yasm 1.3.0.55.g101bc has a segmentation violation in the function deleteToken at modules/preprocs/nasm/nasm-pp.c. NOTE: although a libyasm application could become unavailable if this were exploited, the vendor's position is that there is no security relevance because there is either supposed to ...