Vulnerabilities (CVE)

Filtered by vendor Nasm Subscribe
Filtered by product Netwide Assembler
Total 54 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-7177 1 Nasm 1 Netwide Assembler 2024-11-21 9.3 HIGH N/A
Buffer overflow in the listing module in Netwide Assembler (NASM) before 2.03.01 has unknown impact and attack vectors, a different vulnerability than CVE-2008-2719.
CVE-2008-2719 1 Nasm 1 Netwide Assembler 2024-11-21 6.8 MEDIUM N/A
Off-by-one error in the ppscan function (preproc.c) in Netwide Assembler (NASM) 2.02 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted file that triggers a stack-based buffer overflow.
CVE-2004-1287 1 Nasm 1 Netwide Assembler 2024-11-20 10.0 HIGH N/A
Buffer overflow in the error function in preproc.c for NASM 0.98.38 1.2 allows attackers to execute arbitrary code via a crafted asm file, a different vulnerability than CVE-2005-1194.
CVE-2020-21528 1 Nasm 1 Netwide Assembler 2024-02-05 N/A 5.5 MEDIUM
A Segmentation Fault issue discovered in in ieee_segment function in outieee.c in nasm 2.14.03 and 2.15 allows remote attackers to cause a denial of service via crafted assembly file.
CVE-2023-31722 1 Nasm 1 Netwide Assembler 2024-02-04 N/A 7.8 HIGH
There exists a heap buffer overflow in nasm 2.16.02rc1 (GitHub commit: b952891).
CVE-2022-44370 1 Nasm 1 Netwide Assembler 2024-02-04 N/A 7.8 HIGH
NASM v2.16 was discovered to contain a heap buffer overflow in the component quote_for_pmake() asm/nasm.c:856
CVE-2021-33452 1 Nasm 1 Netwide Assembler 2024-02-04 N/A 5.5 MEDIUM
An issue was discovered in NASM version 2.16rc0. There are memory leaks in nasm_malloc() in nasmlib/alloc.c.
CVE-2021-33450 1 Nasm 1 Netwide Assembler 2024-02-04 N/A 5.5 MEDIUM
An issue was discovered in NASM version 2.16rc0. There are memory leaks in nasm_calloc() in nasmlib/alloc.c.
CVE-2021-45256 1 Nasm 1 Netwide Assembler 2024-02-04 4.3 MEDIUM 5.5 MEDIUM
A Null Pointer Dereference vulnerability existfs in nasm 2.16rc0 via asm/preproc.c.
CVE-2021-45257 1 Nasm 1 Netwide Assembler 2024-02-04 4.3 MEDIUM 5.5 MEDIUM
An infinite loop vulnerability exists in nasm 2.16rc0 via the gpaste_tokens function.
CVE-2020-18974 1 Nasm 1 Netwide Assembler 2024-02-04 4.3 MEDIUM 3.3 LOW
Buffer Overflow in Netwide Assembler (NASM) v2.15.xx allows attackers to cause a denial of service via 'crc64i' in the component 'nasmlib/crc64'. This issue is different than CVE-2019-7147.
CVE-2020-24241 1 Nasm 1 Netwide Assembler 2024-02-04 4.3 MEDIUM 5.5 MEDIUM
In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c.
CVE-2020-24242 1 Nasm 1 Netwide Assembler 2024-02-04 4.3 MEDIUM 5.5 MEDIUM
In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_text in asm/preproc.c by accessing READ memory.
CVE-2020-24978 1 Nasm 1 Netwide Assembler 2024-02-04 7.5 HIGH 9.8 CRITICAL
In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7.
CVE-2019-20334 1 Nasm 1 Netwide Assembler 2024-02-04 4.3 MEDIUM 5.5 MEDIUM
In Netwide Assembler (NASM) 2.14.02, stack consumption occurs in expr# functions in asm/eval.c. This potentially affects the relationships among expr0, expr1, expr2, expr3, expr4, expr5, and expr6 (and stdscan in asm/stdscan.c). This is similar to CVE-2019-6290 and CVE-2019-6291.
CVE-2019-20352 1 Nasm 1 Netwide Assembler 2024-02-04 5.8 MEDIUM 7.1 HIGH
In Netwide Assembler (NASM) 2.15rc0, a heap-based buffer over-read occurs (via a crafted .asm file) in set_text_free when called from expand_one_smacro in asm/preproc.c.
CVE-2019-14248 1 Nasm 1 Netwide Assembler 2024-02-04 4.3 MEDIUM 5.5 MEDIUM
In libnasm.a in Netwide Assembler (NASM) 2.14.xx, asm/pragma.c allows a NULL pointer dereference in process_pragma, search_pragma_list, and nasm_set_limit when "%pragma limit" is mishandled.
CVE-2018-20535 1 Nasm 1 Netwide Assembler 2024-02-04 4.3 MEDIUM 5.5 MEDIUM
There is a use-after-free at asm/preproc.c (function pp_getline) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service during a line-number increment attempt.
CVE-2018-19214 2 Nasm, Redhat 2 Netwide Assembler, Enterprise Linux 2024-02-04 6.8 MEDIUM 7.8 HIGH
Netwide Assembler (NASM) 2.14rc15 has a heap-based buffer over-read in expand_mmac_params in asm/preproc.c for insufficient input.
CVE-2019-6291 1 Nasm 1 Netwide Assembler 2024-02-04 4.3 MEDIUM 5.5 MEDIUM
An issue was discovered in the function expr6 in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem caused by the expr6 function making recursive calls to itself in certain scenarios involving lots of '!' or '+' or '-' characters. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted asm file.