Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nasm netwide assembler 2.14 vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2018-16517
asm/labels.c in Netwide Assembler (NASM) is prone to NULL Pointer Dereference, which allows the malicious user to cause a denial of service via a crafted file.
Nasm Netwide Assembler 2.14.0
Nasm Netwide Assembler
Nasm Netwide Assembler 2.14
1 EDB exploit
1 Github repository
5.5
CVSSv3
CVE-2018-10316
Netwide Assembler (NASM) 2.14rc0 has an endless while loop in the assemble_file function of asm/nasm.c because of a globallineno integer overflow.
Nasm Netwide Assembler 2.14
5.5
CVSSv3
CVE-2018-16382
Netwide Assembler (NASM) 2.14rc15 has a buffer over-read in x86/regflags.c.
Nasm Netwide Assembler 2.14
5.5
CVSSv3
CVE-2018-10016
Netwide Assembler (NASM) 2.14rc0 has a division-by-zero vulnerability in the expr5 function in asm/eval.c via a malformed input file.
Nasm Netwide Assembler 2.14
5.5
CVSSv3
CVE-2019-7147
A buffer over-read exists in the function crc64ib in crc64.c in nasmlib in Netwide Assembler (NASM) 2.14rc16. A crafted asm input can cause segmentation faults, leading to denial-of-service.
Nasm Netwide Assembler 2.14
5.5
CVSSv3
CVE-2017-17810
In Netwide Assembler (NASM) 2.14rc0, there is a "SEGV on unknown address" that will cause a remote denial of service attack, because asm/preproc.c mishandles macro calls that have the wrong number of arguments.
Nasm Netwide Assembler 2.14
Canonical Ubuntu Linux 14.04
5.5
CVSSv3
CVE-2017-17811
In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer overflow that will cause a remote denial of service attack, related to a strcpy in paste_tokens in asm/preproc.c, a similar issue to CVE-2017-11111.
Nasm Netwide Assembler 2.14
Canonical Ubuntu Linux 14.04
5.5
CVSSv3
CVE-2017-17813
In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in the pp_list_one_macro function in asm/preproc.c that will cause a remote denial of service attack, related to mishandling of line-syntax errors.
Nasm Netwide Assembler 2.14
Canonical Ubuntu Linux 14.04
5.5
CVSSv3
CVE-2017-17815
In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in is_mmacro() in asm/preproc.c that will cause a remote denial of service attack, because of a missing check for the relationship between minimum and maximum parameter counts.
Nasm Netwide Assembler 2.14
Canonical Ubuntu Linux 14.04
5.5
CVSSv3
CVE-2017-17817
In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_verror in asm/preproc.c that will cause a remote denial of service attack.
Nasm Netwide Assembler 2.14
Canonical Ubuntu Linux 14.04
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »