CVE-2020-21685
https://notcve.org/view.php?id=CVE-2020-21685
Buffer Overflow vulnerability in hash_findi function in hashtbl.c in nasm 2.15rc0 allows remote attackers to cause a denial of service via crafted asm file. • https://bugzilla.nasm.us/show_bug.cgi?id=3392644 • CWE-787: Out-of-bounds Write •
CVE-2022-44370
https://notcve.org/view.php?id=CVE-2022-44370
NASM v2.16 was discovered to contain a heap buffer overflow in the component quote_for_pmake() asm/nasm.c:856 • https://bugzilla.nasm.us/show_bug.cgi?id=3392815 https://security.gentoo.org/glsa/202312-09 • CWE-787: Out-of-bounds Write •
CVE-2020-18974
https://notcve.org/view.php?id=CVE-2020-18974
Buffer Overflow in Netwide Assembler (NASM) v2.15.xx allows attackers to cause a denial of service via 'crc64i' in the component 'nasmlib/crc64'. This issue is different than CVE-2019-7147. Un desbordamiento del búfer en Netwide Assembler (NASM) versión v2.15.xx, permite a atacantes causar una denegación de servicio por medio de "crc64i" en el componente "nasmlib/crc64". Este problema es diferente de CVE-2019-7147. • https://bugzilla.nasm.us/show_bug.cgi?id=3392568 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVE-2020-24242
https://notcve.org/view.php?id=CVE-2020-24242
In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_text in asm/preproc.c by accessing READ memory. En Netwide Assembler (NASM) versión 2.15rc10, una SEGV puede ser activada en la función tok_text en el archivo asm/preproc.c mediante el acceso a la memoria READ • https://bugzilla.nasm.us/show_bug.cgi?id=3392708 •
CVE-2020-24241
https://notcve.org/view.php?id=CVE-2020-24241
In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c. En Netwide Assembler (NASM) versión 2.15rc10, se presenta un uso de la memoria previamente liberada en la función saa_wbytes en el archivo nasmlib/saa.c • https://bugzilla.nasm.us/show_bug.cgi?id=3392707 • CWE-416: Use After Free •