Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nasm netwide assembler vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-24978
In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7.
Nasm Netwide Assembler 2.15.04
5.5
CVSSv3
CVE-2018-19213
Netwide Assembler (NASM) up to and including 2.14rc16 has memory leaks that may lead to DoS, related to nasm_malloc in nasmlib/malloc.c.
Nasm Netwide Assembler 12.14
5.5
CVSSv3
CVE-2021-33450
An issue exists in NASM version 2.16rc0. There are memory leaks in nasm_calloc() in nasmlib/alloc.c.
Nasm Netwide Assembler 2.16
5.5
CVSSv3
CVE-2021-33452
An issue exists in NASM version 2.16rc0. There are memory leaks in nasm_malloc() in nasmlib/alloc.c.
Nasm Netwide Assembler 2.16
5.5
CVSSv3
CVE-2018-19209
Netwide Assembler (NASM) 2.14rc15 has a NULL pointer dereference in the function find_label in asm/labels.c that will lead to a DoS attack.
Nasm Netwide Assembler 2.14.0
5.5
CVSSv3
CVE-2018-10016
Netwide Assembler (NASM) 2.14rc0 has a division-by-zero vulnerability in the expr5 function in asm/eval.c via a malformed input file.
Nasm Netwide Assembler 2.14
5.5
CVSSv3
CVE-2019-7147
A buffer over-read exists in the function crc64ib in crc64.c in nasmlib in Netwide Assembler (NASM) 2.14rc16. A crafted asm input can cause segmentation faults, leading to denial-of-service.
Nasm Netwide Assembler 2.14
7.8
CVSSv3
CVE-2019-8343
In Netwide Assembler (NASM) 2.14.02, there is a use-after-free in paste_tokens in asm/preproc.c.
Nasm Netwide Assembler 2.14.02
5.5
CVSSv3
CVE-2018-19755
There is an illegal address access at asm/preproc.c (function: is_mmacro) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service (out-of-bounds array access) because a certain conversion can result in a negative integer.
Nasm Netwide Assembler 12.14
5.5
CVSSv3
CVE-2022-41420
nasm v2.16 exists to contain a stack overflow in the Ndisasm component
Nasm Netwide Assembler 2.16
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »