Nasm

nasm

75 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Netwide Assembler

netwide_assembler

75 CVEs

CVEs (75)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-20535 1Nasm 1Netwide Assembler Nov 21, 2024 Dec 28, 2018 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 There is a use-after-free at asm/preproc.c (function pp_getline) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service during a line-number increment attempt.
CVE-2018-1000886 1Nasm 1Netwide Assembler Nov 21, 2024 Dec 20, 2018 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 nasm version 2.14.01rc5, 2.15 contains a Buffer Overflow vulnerability in asm/stdscan.c:130 that can result in Stack-overflow caused by triggering endless macro generation, crash the program. This attack appear to be exp...Show more nasm version 2.14.01rc5, 2.15 contains a Buffer Overflow vulnerability in asm/stdscan.c:130 that can result in Stack-overflow caused by triggering endless macro generation, crash the program. This attack appear to be exploitable via a crafted nasm input file.Show less
CVE-2018-19755 1Nasm 1Netwide Assembler Nov 21, 2024 Nov 30, 2018 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 There is an illegal address access at asm/preproc.c (function: is_mmacro) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service (out-of-bounds array access) because a certain conversion can result in a...Show more There is an illegal address access at asm/preproc.c (function: is_mmacro) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service (out-of-bounds array access) because a certain conversion can result in a negative integer.Show less
CVE-2018-19216 2Debian Nasm 2Debian Linux Netwide Assembler Nov 21, 2024 Nov 12, 2018 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Netwide Assembler (NASM) before 2.13.02 has a use-after-free in detoken at asm/preproc.c.
CVE-2018-19215 2Nasm Redhat 2Enterprise Linux Netwide Assembler Nov 21, 2024 Nov 12, 2018 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Netwide Assembler (NASM) 2.14rc16 has a heap-based buffer over-read in expand_mmac_params in asm/preproc.c for the special cases of the % and $ and ! characters.
CVE-2018-19214 2Nasm Redhat 2Enterprise Linux Netwide Assembler Nov 21, 2024 Nov 12, 2018 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Netwide Assembler (NASM) 2.14rc15 has a heap-based buffer over-read in expand_mmac_params in asm/preproc.c for insufficient input.
CVE-2018-19213 1Nasm 1Netwide Assembler Nov 21, 2024 Nov 12, 2018 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Netwide Assembler (NASM) through 2.14rc16 has memory leaks that may lead to DoS, related to nasm_malloc in nasmlib/malloc.c.
CVE-2018-19209 1Nasm 1Netwide Assembler Nov 21, 2024 Nov 12, 2018 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Netwide Assembler (NASM) 2.14rc15 has a NULL pointer dereference in the function find_label in asm/labels.c that will lead to a DoS attack.
CVE-2018-16999 1Nasm 1Netwide Assembler Nov 21, 2024 Sep 13, 2018 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Netwide Assembler (NASM) 2.14rc15 has an invalid memory write (segmentation fault) in expand_smacro in preproc.c, which allows attackers to cause a denial of service via a crafted input file.
CVE-2018-16517 1Nasm 1Netwide Assembler Nov 21, 2024 Sep 6, 2018 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 asm/labels.c in Netwide Assembler (NASM) is prone to NULL Pointer Dereference, which allows the attacker to cause a denial of service via a crafted file.
CVE-2018-1000667 1Nasm 1Netwide Assembler Nov 21, 2024 Sep 6, 2018 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains a memory corruption (crashed) of nasm when handling a crafted file due to function assemble_file(inname, depend_ptr) at asm/nasm.c:482. vulnerability...Show more NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains a memory corruption (crashed) of nasm when handling a crafted file due to function assemble_file(inname, depend_ptr) at asm/nasm.c:482. vulnerability in function assemble_file(inname, depend_ptr) at asm/nasm.c:482. that can result in aborting/crash nasm program. This attack appear to be exploitable via a specially crafted asm file..Show less
CVE-2018-16382 1Nasm 1Netwide Assembler Nov 21, 2024 Sep 3, 2018 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Netwide Assembler (NASM) 2.14rc15 has a buffer over-read in x86/regflags.c.
CVE-2018-10316 1Nasm 1Netwide Assembler Nov 21, 2024 Apr 24, 2018 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Netwide Assembler (NASM) 2.14rc0 has an endless while loop in the assemble_file function of asm/nasm.c because of a globallineno integer overflow.
CVE-2018-10254 1Nasm 1Netwide Assembler Nov 21, 2024 Apr 21, 2018 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Netwide Assembler (NASM) 2.13 has a stack-based buffer over-read in the disasm function of the disasm/disasm.c file. Remote attackers could leverage this vulnerability to cause a denial of service or possibly have unspec...Show more Netwide Assembler (NASM) 2.13 has a stack-based buffer over-read in the disasm function of the disasm/disasm.c file. Remote attackers could leverage this vulnerability to cause a denial of service or possibly have unspecified other impact via a crafted ELF file.Show less
CVE-2018-10016 1Nasm 1Netwide Assembler Nov 21, 2024 Apr 11, 2018 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Netwide Assembler (NASM) 2.14rc0 has a division-by-zero vulnerability in the expr5 function in asm/eval.c via a malformed input file.
CVE-2018-8883 1Nasm 1Netwide Assembler Nov 21, 2024 Mar 20, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Netwide Assembler (NASM) 2.13.02rc2 has a buffer over-read in the parse_line function in asm/parser.c via uncontrolled access to nasm_reg_flags.
CVE-2018-8882 1Nasm 1Netwide Assembler Nov 21, 2024 Mar 20, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Netwide Assembler (NASM) 2.13.02rc2 has a stack-based buffer under-read in the function ieee_shr in asm/float.c via a large shift value.
CVE-2018-8881 2Canonical Nasm 2Netwide Assembler Ubuntu Linux Nov 21, 2024 Mar 20, 2018 N/A· v4 7.3 HIGH· v3 6.8 MEDIUM· v2 Netwide Assembler (NASM) 2.13.02rc2 has a heap-based buffer over-read in the function tokenize in asm/preproc.c, related to an unterminated string.
CVE-2017-17820 2Canonical Nasm 2Netwide Assembler Ubuntu Linux May 13, 2026 Dec 21, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_list_one_macro in asm/preproc.c that will lead to a remote denial of service attack, related to mishandling of operand-type errors.
CVE-2017-17819 2Canonical Nasm 2Netwide Assembler Ubuntu Linux May 13, 2026 Dec 21, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in the function find_cc() in asm/preproc.c that will cause a remote denial of service attack, because pointers associated with skip_white_ calls are...Show more In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in the function find_cc() in asm/preproc.c that will cause a remote denial of service attack, because pointers associated with skip_white_ calls are not validated.Show less

Previous 1 234 Next