Netwide Assembler Security Vulnerabilities and Issues — Netwide Assembler CVE List

Lucene search

NasmNetwide Assembler

5 matches found

cve•added 2019/07/24 4:15 a.m.•202 views

CVE-2019-14248

In libnasm.a in Netwide Assembler (NASM) 2.14.xx, asm/pragma.c allows a NULL pointer dereference in process_pragma, search_pragma_list, and nasm_set_limit when "%pragma limit" is mishandled.

5.5CVSS5.4AI score0.00137EPSS

cve•added 2019/01/29 12:29 a.m.•63 views

CVE-2019-7147

A buffer over-read exists in the function crc64ib in crc64.c in nasmlib in Netwide Assembler (NASM) 2.14rc16. A crafted asm input can cause segmentation faults, leading to denial-of-service.

5.5CVSS4.8AI score0.00138EPSS

cve•added 2019/01/15 12:29 a.m.•58 views

CVE-2019-6291

An issue was discovered in the function expr6 in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem caused by the expr6 function making recursive calls to itself in certain scenarios involving lots of '!' or '+' or '-' characters. Remote attackers could leverage...

5.5CVSS5.1AI score0.00374EPSS

cve•added 2019/02/15 7:29 a.m.•56 views

CVE-2019-8343

In Netwide Assembler (NASM) 2.14.02, there is a use-after-free in paste_tokens in asm/preproc.c.

7.8CVSS7.4AI score0.00137EPSS

cve•added 2019/01/15 12:29 a.m.•54 views

CVE-2019-6290

An infinite recursion issue was discovered in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in certain scenarios involving lots of '{' characters. Remote attackers could leverage...

5.5CVSS5.1AI score0.00175EPSS