Netwide Assembler

netwide_assembler

Vendor: Nasm • 75 CVEs

CVEs (75)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-44368 1Nasm 1Netwide Assembler Feb 18, 2025 Mar 29, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 NASM v2.16 was discovered to contain a null pointer deference in the NASM component
CVE-2022-46457 1Nasm 1Netwide Assembler Apr 10, 2025 Jan 4, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 NASM v2.16 was discovered to contain a segmentation violation in the component ieee_write_file at /output/outieee.c.
CVE-2022-46456 1Nasm 1Netwide Assembler Apr 10, 2025 Jan 4, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 NASM v2.16 was discovered to contain a global buffer overflow in the component dbgdbg_typevalue at /output/outdbg.c.
CVE-2022-41420 1Nasm 1Netwide Assembler Nov 21, 2024 Oct 3, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 nasm v2.16 was discovered to contain a stack overflow in the Ndisasm component
CVE-2021-33452 1Nasm 1Netwide Assembler Nov 21, 2024 Jul 26, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 An issue was discovered in NASM version 2.16rc0. There are memory leaks in nasm_malloc() in nasmlib/alloc.c.
CVE-2021-33450 1Nasm 1Netwide Assembler Nov 21, 2024 Jul 26, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 An issue was discovered in NASM version 2.16rc0. There are memory leaks in nasm_calloc() in nasmlib/alloc.c.
CVE-2021-45257 1Nasm 1Netwide Assembler Nov 21, 2024 Dec 22, 2021 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An infinite loop vulnerability exists in nasm 2.16rc0 via the gpaste_tokens function.
CVE-2021-45256 1Nasm 1Netwide Assembler Nov 21, 2024 Dec 22, 2021 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 A Null Pointer Dereference vulnerability existfs in nasm 2.16rc0 via asm/preproc.c.
CVE-2020-18974 1Nasm 1Netwide Assembler Nov 21, 2024 Aug 25, 2021 N/A· v4 3.3 LOW· v3 4.3 MEDIUM· v2 Buffer Overflow in Netwide Assembler (NASM) v2.15.xx allows attackers to cause a denial of service via 'crc64i' in the component 'nasmlib/crc64'. This issue is different than CVE-2019-7147.
CVE-2020-24978 1Nasm 1Netwide Assembler Nov 21, 2024 Sep 4, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7.
CVE-2020-24242 1Nasm 1Netwide Assembler Nov 21, 2024 Aug 25, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_text in asm/preproc.c by accessing READ memory.
CVE-2020-24241 1Nasm 1Netwide Assembler Nov 21, 2024 Aug 25, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c.
CVE-2019-20352 1Nasm 1Netwide Assembler Nov 21, 2024 Jan 6, 2020 N/A· v4 7.1 HIGH· v3 5.8 MEDIUM· v2 In Netwide Assembler (NASM) 2.15rc0, a heap-based buffer over-read occurs (via a crafted .asm file) in set_text_free when called from expand_one_smacro in asm/preproc.c.
CVE-2019-20334 1Nasm 1Netwide Assembler Nov 21, 2024 Jan 4, 2020 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 In Netwide Assembler (NASM) 2.14.02, stack consumption occurs in expr# functions in asm/eval.c. This potentially affects the relationships among expr0, expr1, expr2, expr3, expr4, expr5, and expr6 (and stdscan in asm/std...Show more In Netwide Assembler (NASM) 2.14.02, stack consumption occurs in expr# functions in asm/eval.c. This potentially affects the relationships among expr0, expr1, expr2, expr3, expr4, expr5, and expr6 (and stdscan in asm/stdscan.c). This is similar to CVE-2019-6290 and CVE-2019-6291.Show less
CVE-2019-14248 1Nasm 1Netwide Assembler Nov 21, 2024 Jul 24, 2019 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 In libnasm.a in Netwide Assembler (NASM) 2.14.xx, asm/pragma.c allows a NULL pointer dereference in process_pragma, search_pragma_list, and nasm_set_limit when "%pragma limit" is mishandled.
CVE-2019-8343 1Nasm 1Netwide Assembler Nov 21, 2024 Feb 15, 2019 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 In Netwide Assembler (NASM) 2.14.02, there is a use-after-free in paste_tokens in asm/preproc.c.
CVE-2019-7147 1Nasm 1Netwide Assembler Nov 21, 2024 Jan 29, 2019 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 A buffer over-read exists in the function crc64ib in crc64.c in nasmlib in Netwide Assembler (NASM) 2.14rc16. A crafted asm input can cause segmentation faults, leading to denial-of-service.
CVE-2019-6291 1Nasm 1Netwide Assembler Nov 21, 2024 Jan 15, 2019 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in the function expr6 in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem caused by the expr6 function making recursive calls to itself in certain scenarios...Show more An issue was discovered in the function expr6 in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem caused by the expr6 function making recursive calls to itself in certain scenarios involving lots of '!' or '+' or '-' characters. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted asm file.Show less
CVE-2019-6290 1Nasm 1Netwide Assembler Nov 21, 2024 Jan 15, 2019 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An infinite recursion issue was discovered in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in cert...Show more An infinite recursion issue was discovered in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in certain scenarios involving lots of '{' characters. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted asm file.Show less
CVE-2018-20538 1Nasm 1Netwide Assembler Nov 21, 2024 Dec 28, 2018 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 There is a use-after-free at asm/preproc.c (function pp_getline) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service during certain finishes tests.

Previous 123 4 Next