CVE-2019-6291 log

Source	CVE Red Hat MITRE NVD Debian Ubuntu SUSE Alpine Mageia CVE Details CIRCL Bugs Arch Linux Red Hat Gentoo SUSE GitHub Lists oss-security full-disclosure bugtraq Misc GitHub code web search
Severity	Medium
Remote	No
Type	Denial of service
Description	An issue was discovered in the function expr6 in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem caused by the expr6 function making recursive calls to itself in certain scenarios involving lots of '!' or '+' or '-' characters. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted asm file.

Group	Package	Affected	Fixed	Severity	Status	Ticket
AVG-852	nasm	2.14-1	2.14.02-1	Medium	Fixed

Date	Advisory	Group	Package	Severity	Type
24 Jan 2019	ASA-201901-16	AVG-852	nasm	Medium	denial of service

References
https://bugzilla.nasm.us/show_bug.cgi?id=3392549