CVE-2020-21686
https://notcve.org/view.php?id=CVE-2020-21686
A stack-use-after-scope issue discovered in expand_mmac_params function in preproc.c in nasm before 2.15.04 allows remote attackers to cause a denial of service via crafted asm file. • https://bugzilla.nasm.us/show_bug.cgi?id=3392643 • CWE-562: Return of Stack Variable Address •
CVE-2020-18780
https://notcve.org/view.php?id=CVE-2020-18780
A Use After Free vulnerability in function new_Token in asm/preproc.c in nasm 2.14.02 allows attackers to cause a denial of service via crafted nasm command. • https://bugzilla.nasm.us/show_bug.cgi?id=3392634 • CWE-416: Use After Free •
CVE-2020-21528
https://notcve.org/view.php?id=CVE-2020-21528
A Segmentation Fault issue discovered in in ieee_segment function in outieee.c in nasm 2.14.03 and 2.15 allows remote attackers to cause a denial of service via crafted assembly file. • https://bugzilla.nasm.us/show_bug.cgi?id=3392637 https://security.gentoo.org/glsa/202312-09 •
CVE-2020-21687
https://notcve.org/view.php?id=CVE-2020-21687
Buffer Overflow vulnerability in scan function in stdscan.c in nasm 2.15rc0 allows remote attackers to cause a denial of service via crafted asm file. • https://bugzilla.nasm.us/show_bug.cgi?id=3392645 • CWE-787: Out-of-bounds Write •
CVE-2022-29654
https://notcve.org/view.php?id=CVE-2022-29654
Buffer overflow vulnerability in quote_for_pmake in asm/nasm.c in nasm before 2.15.05 allows attackers to cause a denial of service via crafted file. La vulnerabilidad de desbordamiento de búfer en quote_for_pmake en asm/nasm.c en nasm antes de 2.15.05 permite a los atacantes provocar una denegación de servicio a través de un archivo diseñado. • https://gcc.gnu.org/onlinedocs/gcc/Instrumentation-Options.html https://gist.github.com/naihsin/b96e2c5c2c81621b46557fd7aacd165f https://www.nasm.us/pub/nasm/releasebuilds/2.15.05 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •