Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nasm netwide assembler 2.14 vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2018-16517
asm/labels.c in Netwide Assembler (NASM) is prone to NULL Pointer Dereference, which allows the malicious user to cause a denial of service via a crafted file.
Nasm Netwide Assembler 2.14.0
Nasm Netwide Assembler
Nasm Netwide Assembler 2.14
1 EDB exploit
5.5
CVSSv3
CVE-2018-10016
Netwide Assembler (NASM) 2.14rc0 has a division-by-zero vulnerability in the expr5 function in asm/eval.c via a malformed input file.
Nasm Netwide Assembler 2.14
5.5
CVSSv3
CVE-2018-10316
Netwide Assembler (NASM) 2.14rc0 has an endless while loop in the assemble_file function of asm/nasm.c because of a globallineno integer overflow.
Nasm Netwide Assembler 2.14
5.5
CVSSv3
CVE-2018-16382
Netwide Assembler (NASM) 2.14rc15 has a buffer over-read in x86/regflags.c.
Nasm Netwide Assembler 2.14
5.5
CVSSv3
CVE-2019-7147
A buffer over-read exists in the function crc64ib in crc64.c in nasmlib in Netwide Assembler (NASM) 2.14rc16. A crafted asm input can cause segmentation faults, leading to denial-of-service.
Nasm Netwide Assembler 2.14
7.8
CVSSv3
CVE-2017-10686
In Netwide Assembler (NASM) 2.14rc0, there are multiple heap use after free vulnerabilities in the tool nasm. The related heap is allocated in the token() function and freed in the detoken() function (called by pp_getline()) - it is used again at multiple positions later that cou...
Nasm Netwide Assembler 2.14
Canonical Ubuntu Linux 14.04
5.5
CVSSv3
CVE-2017-17810
In Netwide Assembler (NASM) 2.14rc0, there is a "SEGV on unknown address" that will cause a remote denial of service attack, because asm/preproc.c mishandles macro calls that have the wrong number of arguments.
Nasm Netwide Assembler 2.14
Canonical Ubuntu Linux 14.04
5.5
CVSSv3
CVE-2017-17812
In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over-read in the function detoken() in asm/preproc.c that will cause a remote denial of service attack.
Nasm Netwide Assembler 2.14
Canonical Ubuntu Linux 14.04
5.5
CVSSv3
CVE-2017-17815
In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in is_mmacro() in asm/preproc.c that will cause a remote denial of service attack, because of a missing check for the relationship between minimum and maximum parameter counts.
Nasm Netwide Assembler 2.14
Canonical Ubuntu Linux 14.04
5.5
CVSSv3
CVE-2017-17816
In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_getline in asm/preproc.c that will cause a remote denial of service attack.
Nasm Netwide Assembler 2.14
Canonical Ubuntu Linux 14.04
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »