Nasm: >> Netwide Assembler Security Vulnerabilities
nasm v2.16 was discovered to contain a stack overflow in the Ndisasm component
CVSS Score
5.5
EPSS Score
0.0
Published
2022-10-03
An issue was discovered in NASM version 2.16rc0. There are memory leaks in nasm_calloc() in nasmlib/alloc.c.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-07-26
An issue was discovered in NASM version 2.16rc0. There are memory leaks in nasm_malloc() in nasmlib/alloc.c.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-07-26
A Null Pointer Dereference vulnerability existfs in nasm 2.16rc0 via asm/preproc.c.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-12-22
An infinite loop vulnerability exists in nasm 2.16rc0 via the gpaste_tokens function.
CVSS Score
5.5
EPSS Score
0.003
Published
2021-12-22
Buffer Overflow in Netwide Assembler (NASM) v2.15.xx allows attackers to cause a denial of service via 'crc64i' in the component 'nasmlib/crc64'. This issue is different than CVE-2019-7147.
CVSS Score
3.3
EPSS Score
0.001
Published
2021-08-25
In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7.
CVSS Score
9.8
EPSS Score
0.004
Published
2020-09-04
In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c.
CVSS Score
5.5
EPSS Score
0.001
Published
2020-08-25
In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_text in asm/preproc.c by accessing READ memory.
CVSS Score
5.5
EPSS Score
0.001
Published
2020-08-25
In Netwide Assembler (NASM) 2.15rc0, a heap-based buffer over-read occurs (via a crafted .asm file) in set_text_free when called from expand_one_smacro in asm/preproc.c.
CVSS Score
7.1
EPSS Score
0.003
Published
2020-01-06