UBUNTU-CVE-2018-16999

Netwide Assembler NASM 2.14rc15 has an invalid memory write segmentation fault in expandsmacro in preproc.c, which allows attackers to cause a denial of service via a crafted input file...

@bahmutov/add-typescript-to-cypress (>=1.0.2 <=1.1.1), @betit/orion (>=1.0.0-beta.1 <=1.0.0-beta.6) +178 more potentially affected by CVE-2017-16137 via debug (>=3.0.0 <=3.0.1)

debug NPM version =3.0.0, =1.0.2, =1.0.0-beta.1, =1.0.0-beta.6, =2.0.1-SNAPSHOT.88, =0.0.4, =0.0.12, =1.0.1, =1.0.0, =1.0.0, =0.1.5, =2.8.0, =1.0.71, =1.0.10-14, =1.1.16 and more Source cves: CVE-2017-16137 Source advisory: OSV:GHSA-GXPJ-CX7G-858C...

UBUNTU-CVE-2018-14883

An issue was discovered in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8. An Integer Overflow leads to a heap-based buffer over-read in exifthumbnailextract of exif.c...

Important: Red Hat Security Advisory: rh-ror50-rubygem-sprockets security update

An update for rh-ror50-rubygem-sprockets is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

DEBIAN-CVE-2018-8881

Netwide Assembler NASM 2.13.02rc2 has a heap-based buffer over-read in the function tokenize in asm/preproc.c, related to an unterminated string...

PHP GD Graphics Library Denial of Service Vulnerability

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community.GD Graphics Library also known as libgd or libgd2 is an open source library for dynamically creating images developed by American software...

DEBIAN-CVE-2017-17813

In Netwide Assembler NASM 2.14rc0, there is a use-after-free in the pplistonemacro function in asm/preproc.c that will cause a remote denial of service attack, related to mishandling of line-syntax errors...

DEBIAN-CVE-2017-17816

In Netwide Assembler NASM 2.14rc0, there is a use-after-free in ppgetline in asm/preproc.c that will cause a remote denial of service attack...

DEBIAN-CVE-2017-17815

In Netwide Assembler NASM 2.14rc0, there is an illegal address access in ismmacro in asm/preproc.c that will cause a remote denial of service attack, because of a missing check for the relationship between minimum and maximum parameter counts...

CVE-2017-17818

In Netwide Assembler NASM 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in pastetokens in asm/preproc.c...

CVE-2017-17812

In Netwide Assembler NASM 2.14rc0, there is a heap-based buffer over-read in the function detoken in asm/preproc.c that will cause a remote denial of service attack...

DEBIAN-CVE-2017-17817

In Netwide Assembler NASM 2.14rc0, there is a use-after-free in ppverror in asm/preproc.c that will cause a remote denial of service attack...

Netwide Assembler 'pp_list_one_macro' function memory misreference vulnerability

Netwide Assembler NASM is a Linux-based assembler that creates binaries and writes bootloaders. A memory misreference vulnerability exists in the 'pplistonemacro' function in the asm/preproc.c file in NASM version 2.14rc0. A remote attacker could exploit this vulnerability to cause a denial of...

Netwide Assembler 'pp_getline' Function Memory Misreference Vulnerability

Netwide Assembler NASM is a Linux-based assembler that creates binaries and writes bootloaders. A memory misreference vulnerability exists in the 'ppgetline' function in the asm/preproc.c file in NASM version 2.14rc0. A remote attacker could exploit this vulnerability to cause a denial of service...

Netwide Assembler 'find_cc()' Function Illegal Address Access Vulnerability

Netwide Assembler NASM is a Linux-based assembler that creates binaries and writes bootloaders. A security vulnerability in the 'findcc' function in the asm/preproc.c file in NASM version 2.14rc0 stems from the program's failure to validate pointers associated with skipwhite calls. A remote...

Netwide Assembler 'detoken()' Function Buffer Overflow Vulnerability

Netwide Assembler NASM is a Linux-based assembler that creates binaries and writes bootloaders. A buffer overflow vulnerability exists in the 'detoken' function in the asm/preproc.c file in NASM version 2.14rc0. A remote attacker could exploit this vulnerability to cause a denial of service...

UBUNTU-CVE-2017-17817

In Netwide Assembler NASM 2.14rc0, there is a use-after-free in ppverror in asm/preproc.c that will cause a remote denial of service attack...

UBUNTU-CVE-2017-17810

In Netwide Assembler NASM 2.14rc0, there is a "SEGV on unknown address" that will cause a remote denial of service attack, because asm/preproc.c mishandles macro calls that have the wrong number of arguments...

UBUNTU-CVE-2017-17813

In Netwide Assembler NASM 2.14rc0, there is a use-after-free in the pplistonemacro function in asm/preproc.c that will cause a remote denial of service attack, related to mishandling of line-syntax errors...

UBUNTU-CVE-2017-17815

In Netwide Assembler NASM 2.14rc0, there is an illegal address access in ismmacro in asm/preproc.c that will cause a remote denial of service attack, because of a missing check for the relationship between minimum and maximum parameter counts...