nasm
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | 80x86 assembler designed for portability and modularity |
| Version | 3.01-1 [extra] |
Open
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-2325 | 2.15.05-1 | Low | Vulnerable |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2020-18974 | AVG-2325 | Low | No | Denial of service | A buffer overflow in Netwide Assembler (NASM) v2.15.xx allows attackers to cause a denial of service via 'crc64i' in the component 'nasmlib/crc64'. This... |
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-903 | 2.14.02-2 | 2.15.02-1 | High | Fixed | |
| AVG-852 | 2.14-1 | 2.14.02-1 | Medium | Fixed |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2019-8343 | AVG-903 | High | No | Arbitrary code execution | In Netwide Assembler (NASM) 2.14.02, there is a use-after-free in paste_tokens in asm/preproc.c. |
| CVE-2019-6291 | AVG-852 | Medium | No | Denial of service | An issue was discovered in the function expr6 in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem caused by the expr6... |
| CVE-2019-6290 | AVG-852 | Medium | No | Denial of service | An infinite recursion issue was discovered in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem resulting from... |
Advisories
| Date | Advisory | Group | Severity | Type |
|---|---|---|---|---|
| 24 Jan 2019 | ASA-201901-16 | AVG-852 | Medium | denial of service |