Netwide Assembler@* Security Vulnerabilities and Issues — Netwide Assembler@* CVE List

Lucene search

NasmNetwide Assembler*

11 matches found

CVE•added 2019/07/24 4:15 a.m.•203 views

CVE-2019-14248

In libnasm.a in Netwide Assembler (NASM) 2.14.xx, asm/pragma.c allows a NULL pointer dereference in process_pragma, search_pragma_list, and nasm_set_limit when "%pragma limit" is mishandled.

5.5CVSS5.4AI score0.00137EPSS

CVE•added 2018/09/06 11:29 p.m.•154 views

CVE-2018-16517

asm/labels.c in Netwide Assembler (NASM) is prone to NULL Pointer Dereference, which allows the attacker to cause a denial of service via a crafted file.

5.5CVSS5.1AI score0.01508EPSS

CVE•added 2018/09/06 5:29 p.m.•147 views

CVE-2018-1000667

NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains a memory corruption (crashed) of nasm when handling a crafted file due to function assemble_file(inname, depend_ptr) at asm/nasm.c:482. vulnerability in function assemble_file(inname, depend_ptr) at asm/nasm.c:482. that can resu...

5.5CVSS6.1AI score0.00206EPSS

CVE•added 2018/11/12 7:29 p.m.•135 views

CVE-2018-19216

Netwide Assembler (NASM) before 2.13.02 has a use-after-free in detoken at asm/preproc.c.

7.8CVSS6.1AI score0.00234EPSS

CVE•added 2019/01/15 12:29 a.m.•60 views

CVE-2019-6291

An issue was discovered in the function expr6 in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem caused by the expr6 function making recursive calls to itself in certain scenarios involving lots of '!' or '+' or '-' characters. Remote attackers could leverage...

5.5CVSS5.1AI score0.00374EPSS

CVE•added 2021/08/25 4:15 p.m.•57 views

CVE-2020-18974

Buffer Overflow in Netwide Assembler (NASM) v2.15.xx allows attackers to cause a denial of service via 'crc64i' in the component 'nasmlib/crc64'. This issue is different than CVE-2019-7147.

4.3CVSS4.5AI score0.00138EPSS

CVE•added 2019/01/15 12:29 a.m.•56 views

CVE-2019-6290

An infinite recursion issue was discovered in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in certain scenarios involving lots of '{' characters. Remote attackers could leverage...

5.5CVSS5.1AI score0.00175EPSS

CVE•added 2009/09/08 10:30 a.m.•48 views

CVE-2008-7177

Buffer overflow in the listing module in Netwide Assembler (NASM) before 2.03.01 has unknown impact and attack vectors, a different vulnerability than CVE-2008-2719.

9.3CVSS6.6AI score0.03568EPSS

CVE•added 2023/03/29 8:15 p.m.•47 views

CVE-2022-44370

NASM v2.16 was discovered to contain a heap buffer overflow in the component quote_for_pmake() asm/nasm.c:856

7.8CVSS7.6AI score0.00059EPSS

CVE•added 2023/08/22 7:16 p.m.•40 views

CVE-2022-29654

Buffer overflow vulnerability in quote_for_pmake in asm/nasm.c in nasm before 2.15.05 allows attackers to cause a denial of service via crafted file.

5.5CVSS5.3AI score0.00033EPSS

CVE•added 2023/08/22 7:16 p.m.•39 views

CVE-2020-21686

A stack-use-after-scope issue discovered in expand_mmac_params function in preproc.c in nasm before 2.15.04 allows remote attackers to cause a denial of service via crafted asm file.

5.5CVSS5.3AI score0.00326EPSS