Nasm

Netwide Assembler

72 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2019-20334

Exploit
  • EPSS 0.23%
  • Published 04.01.2020 07:15:11
  • Last modified 21.11.2024 04:38:17

In Netwide Assembler (NASM) 2.14.02, stack consumption occurs in expr# functions in asm/eval.c. This potentially affects the relationships among expr0, expr1, expr2, expr3, expr4, expr5, and expr6 (and stdscan in asm/stdscan.c). This is similar to CV...

5.5

CVE-2019-14248

Exploit
  • EPSS 0.14%
  • Published 24.07.2019 04:15:12
  • Last modified 21.11.2024 04:26:17

In libnasm.a in Netwide Assembler (NASM) 2.14.xx, asm/pragma.c allows a NULL pointer dereference in process_pragma, search_pragma_list, and nasm_set_limit when "%pragma limit" is mishandled.

7.8

CVE-2019-8343

Exploit
  • EPSS 0.14%
  • Published 15.02.2019 07:29:00
  • Last modified 21.11.2024 04:49:43

In Netwide Assembler (NASM) 2.14.02, there is a use-after-free in paste_tokens in asm/preproc.c.

5.5

CVE-2019-7147

Exploit
  • EPSS 0.14%
  • Published 29.01.2019 00:29:00
  • Last modified 21.11.2024 04:47:39

A buffer over-read exists in the function crc64ib in crc64.c in nasmlib in Netwide Assembler (NASM) 2.14rc16. A crafted asm input can cause segmentation faults, leading to denial-of-service.

5.5

CVE-2019-6291

Exploit
  • EPSS 0.37%
  • Published 15.01.2019 00:29:00
  • Last modified 21.11.2024 04:46:23

An issue was discovered in the function expr6 in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem caused by the expr6 function making recursive calls to itself in certain scenarios involving lots of '!' or '+' o...

5.5

CVE-2019-6290

Exploit
  • EPSS 0.18%
  • Published 15.01.2019 00:29:00
  • Last modified 21.11.2024 04:46:22

An infinite recursion issue was discovered in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in certain scenarios involving lots o...

5.5

CVE-2018-20538

Exploit
  • EPSS 0.14%
  • Published 28.12.2018 16:29:04
  • Last modified 21.11.2024 04:01:40

There is a use-after-free at asm/preproc.c (function pp_getline) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service during certain finishes tests.

5.5

CVE-2018-20535

Exploit
  • EPSS 0.13%
  • Published 28.12.2018 16:29:04
  • Last modified 21.11.2024 04:01:40

There is a use-after-free at asm/preproc.c (function pp_getline) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service during a line-number increment attempt.

5.5

CVE-2018-1000886

Exploit
  • EPSS 0.15%
  • Published 20.12.2018 21:29:00
  • Last modified 21.11.2024 03:40:35

nasm version 2.14.01rc5, 2.15 contains a Buffer Overflow vulnerability in asm/stdscan.c:130 that can result in Stack-overflow caused by triggering endless macro generation, crash the program. This attack appear to be exploitable via a crafted nasm in...

5.5

CVE-2018-19755

Exploit
  • EPSS 0.14%
  • Published 30.11.2018 03:29:00
  • Last modified 21.11.2024 03:58:28

There is an illegal address access at asm/preproc.c (function: is_mmacro) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service (out-of-bounds array access) because a certain conversion can result in a negative integer.