Vulnerability Details CVE-2023-31975
yasm v1.3.0 was discovered to contain a memory leak via the function yasm_intnum_copy at /libyasm/intnum.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 1.1%
CVSS Severity
CVSS v3 Score 3.3
References
- http://www.openwall.com/lists/oss-security/2023/06/20/6
- http://www.openwall.com/lists/oss-security/2023/06/21/10
- http://www.openwall.com/lists/oss-security/2023/06/21/13
- http://www.openwall.com/lists/oss-security/2023/06/21/2
- http://www.openwall.com/lists/oss-security/2023/06/21/5
- http://www.openwall.com/lists/oss-security/2023/06/21/7
- http://www.openwall.com/lists/oss-security/2023/06/21/8
- http://www.openwall.com/lists/oss-security/2023/06/21/9
- http://www.openwall.com/lists/oss-security/2023/06/22/1
- http://www.openwall.com/lists/oss-security/2023/06/22/3
- http://www.openwall.com/lists/oss-security/2023/06/22/6
- http://www.openwall.com/lists/oss-security/2023/06/23/1
- http://www.openwall.com/lists/oss-security/2023/06/23/2
- http://www.openwall.com/lists/oss-security/2023/06/23/4
- http://www.openwall.com/lists/oss-security/2023/06/23/8
- http://www.openwall.com/lists/oss-security/2023/06/23/9
- http://www.openwall.com/lists/oss-security/2023/06/24/1
- https://github.com/yasm/yasm/issues/210
- http://www.openwall.com/lists/oss-security/2023/06/20/6
- http://www.openwall.com/lists/oss-security/2023/06/21/10
- http://www.openwall.com/lists/oss-security/2023/06/21/13
- http://www.openwall.com/lists/oss-security/2023/06/21/2
- http://www.openwall.com/lists/oss-security/2023/06/21/5
- http://www.openwall.com/lists/oss-security/2023/06/21/7
- http://www.openwall.com/lists/oss-security/2023/06/21/8
- http://www.openwall.com/lists/oss-security/2023/06/21/9
- http://www.openwall.com/lists/oss-security/2023/06/22/1
- http://www.openwall.com/lists/oss-security/2023/06/22/3
- http://www.openwall.com/lists/oss-security/2023/06/22/6
- http://www.openwall.com/lists/oss-security/2023/06/23/1
- http://www.openwall.com/lists/oss-security/2023/06/23/2
- http://www.openwall.com/lists/oss-security/2023/06/23/4
- http://www.openwall.com/lists/oss-security/2023/06/23/8
- http://www.openwall.com/lists/oss-security/2023/06/23/9
- http://www.openwall.com/lists/oss-security/2023/06/24/1
- https://github.com/yasm/yasm/issues/210
Products affected by CVE-2023-31975
-
cpe:2.3:a:yasm_project:yasm:1.3.0