Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nasm vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2017-17818
In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in paste_tokens in asm/preproc.c.
Nasm Netwide Assembler 2.14
Canonical Ubuntu Linux 14.04
4.3
CVSSv2
CVE-2017-17820
In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_list_one_macro in asm/preproc.c that will lead to a remote denial of service attack, related to mishandling of operand-type errors.
Nasm Netwide Assembler 2.14
Canonical Ubuntu Linux 14.04
4.3
CVSSv2
CVE-2017-14228
In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in the function paste_tokens() in preproc.c, aka a NULL pointer dereference. It will lead to remote denial of service.
Nasm Netwide Assembler 2.14
Canonical Ubuntu Linux 14.04
6.8
CVSSv2
CVE-2017-10686
In Netwide Assembler (NASM) 2.14rc0, there are multiple heap use after free vulnerabilities in the tool nasm. The related heap is allocated in the token() function and freed in the detoken() function (called by pp_getline()) - it is used again at multiple positions later that cou...
Nasm Netwide Assembler 2.14
Canonical Ubuntu Linux 14.04
6.8
CVSSv2
CVE-2018-19216
Netwide Assembler (NASM) prior to 2.13.02 has a use-after-free in detoken at asm/preproc.c.
Nasm Netwide Assembler
Debian Debian Linux 9.0
Debian Debian Linux 8.0
6.8
CVSSv2
CVE-2018-19214
Netwide Assembler (NASM) 2.14rc15 has a heap-based buffer over-read in expand_mmac_params in asm/preproc.c for insufficient input.
Nasm Netwide Assembler 12.14
Redhat Enterprise Linux 5.0
Redhat Enterprise Linux 6.0
Redhat Enterprise Linux 7.0
6.8
CVSSv2
CVE-2018-19215
Netwide Assembler (NASM) 2.14rc16 has a heap-based buffer over-read in expand_mmac_params in asm/preproc.c for the special cases of the % and $ and ! characters.
Nasm Netwide Assembler 12.14
Redhat Enterprise Linux 5.0
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
4.6
CVSSv2
CVE-2005-1194
Stack-based buffer overflow in the ieee_putascii function for nasm 0.98 and previous versions allows malicious users to execute arbitrary code via a crafted asm file, a different vulnerability than CVE-2004-1287.
Redhat Enterprise Linux 4.0
Redhat Enterprise Linux 2.1
Redhat Enterprise Linux 3.0
Redhat Enterprise Linux Desktop 4.0
Redhat Linux Advanced Workstation 2.1
Redhat Enterprise Linux Desktop 3.0
NA
CVE-2023-31723
yasm 1.3.0.55.g101bc exists to contain a segmentation violation via the function expand_mmac_params at /nasm/nasm-pp.c.
Yasm Project Yasm 1.3.0.55.g101bc
NA
CVE-2023-31724
yasm 1.3.0.55.g101bc exists to contain a segmentation violation via the function do_directive at /nasm/nasm-pp.c.
Yasm Project Yasm 1.3.0.55.g101bc
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »