TencentOS Server 4: yasm (TSSA-2025:0508)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0508 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

EUVD-2021-20166

Malware in sbrugna...

Unity Linux 20.1070e Security Update: yasm (UTSA-2025-984690)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-984690 advisory. yasm commit 9defefae was discovered to contain a NULL pointer dereference via the yasmsectionbcsappend function at section.c. Tenable has extracted the preceding...

EUVD-2023-36016

Malicious code in bioql PyPI...

EUVD-2023-33123

Malicious code in bioql PyPI...

EUVD-2023-41609

Malicious code in bioql PyPI...

EUVD-2023-53515

Malicious code in bioql PyPI...

EUVD-2023-53513

Malicious code in bioql PyPI...

EUVD-2023-33124

Malicious code in bioql PyPI...

EUVD-2023-34822

Malicious code in bioql PyPI...

Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the do_directive function in the modules/preprocs/nasm/nasm-pp.c component.

...

Linux Distros Unpatched Vulnerability : CVE-2023-29579

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via the component yasm/yasm+0x43b466 in vsprintf. Note: This has been disputed by third parties...

Linux Distros Unpatched Vulnerability : CVE-2021-33462

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in yasm version 1.3.0. There is a use-after-free in exprtraversenodespost in libyasm/expr.c. CVE-2021-33462 Note that Nessus relies on t...

Linux Distros Unpatched Vulnerability : CVE-2021-33461

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasmintnumdestroy in libyasm/intnum.c. CVE-2021-33461 Note that Nessus relies on the...

Linux Distros Unpatched Vulnerability : CVE-2023-49556

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Overflow vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the exprdeleteterm function in the libyasm/expr.c...

Linux Distros Unpatched Vulnerability : CVE-2023-49557

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the yasmsectionbcsfirst function in the libyasm/section.c component...

CVE-2024-22653 affecting package yasm for versions less than 1.3.0-17

CVE-2024-22653 affecting package yasm for versions less than 1.3.0-17. A patched version of the package is available...

Azure Linux 3.0 Security Update: yasm (CVE-2024-22653)

The version of yasm installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-22653 advisory. - yasm commit 9defefae was discovered to contain a NULL pointer dereference via the yasmsectionbcsappend functio...

CBL Mariner 2.0 Security Update: yasm (CVE-2024-22653)

The version of yasm installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-22653 advisory. - yasm commit 9defefae was discovered to contain a NULL pointer dereference via the yasmsectionbcsappend functio...

CBL Mariner 2.0 Security Update: yasm (CVE-2023-51258)

The version of yasm installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-51258 advisory. - A memory leak issue discovered in YASM v.1.3.0 allows a local attacker to cause a denial of service via the...