Netwide Assembler Security Vulnerabilities and Issues — Netwide Assembler CVE List

Lucene search

NasmNetwide Assembler

5 matches found

CVE•added 2020/01/04 7:15 a.m.•186 views

CVE-2019-20334

In Netwide Assembler (NASM) 2.14.02, stack consumption occurs in expr# functions in asm/eval.c. This potentially affects the relationships among expr0, expr1, expr2, expr3, expr4, expr5, and expr6 (and stdscan in asm/stdscan.c). This is similar to CVE-2019-6290 and CVE-2019-6291.

5.5CVSS5.2AI score0.00374EPSS

CVE•added 2020/01/06 6:15 a.m.•100 views

CVE-2019-20352

In Netwide Assembler (NASM) 2.15rc0, a heap-based buffer over-read occurs (via a crafted .asm file) in set_text_free when called from expand_one_smacro in asm/preproc.c.

7.1CVSS6.8AI score0.00297EPSS

CVE•added 2020/08/25 2:15 p.m.•47 views

CVE-2020-24241

In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c.

5.5CVSS5.4AI score0.00131EPSS

CVE•added 2020/08/25 2:15 p.m.•44 views

CVE-2020-24242

In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_text in asm/preproc.c by accessing READ memory.

5.5CVSS5.3AI score0.00137EPSS

CVE•added 2020/09/04 12:15 a.m.•37 views

CVE-2020-24978

In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7.

9.8CVSS9.1AI score0.00413EPSS