CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-29654
https://notcve.org/view.php?id=CVE-2022-29654
22 Aug 2023 — Buffer overflow vulnerability in quote_for_pmake in asm/nasm.c in nasm before 2.15.05 allows attackers to cause a denial of service via crafted file. La vulnerabilidad de desbordamiento de búfer en quote_for_pmake en asm/nasm.c en nasm antes de 2.15.05 permite a los atacantes provocar una denegación de servicio a través de un archivo diseñado. • https://gcc.gnu.org/onlinedocs/gcc/Instrumentation-Options.html • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2020-21528 – Gentoo Linux Security Advisory 202312-09
https://notcve.org/view.php?id=CVE-2020-21528
22 Aug 2023 — A Segmentation Fault issue discovered in in ieee_segment function in outieee.c in nasm 2.14.03 and 2.15 allows remote attackers to cause a denial of service via crafted assembly file. Multiple vulnerabilities have been discovered in NASM, the worst of which could lead to arbitrary code execution. Versions greater than or equal to 2.16.01 are affected. • https://bugzilla.nasm.us/show_bug.cgi?id=3392637 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-21685
https://notcve.org/view.php?id=CVE-2020-21685
22 Aug 2023 — Buffer Overflow vulnerability in hash_findi function in hashtbl.c in nasm 2.15rc0 allows remote attackers to cause a denial of service via crafted asm file. • https://bugzilla.nasm.us/show_bug.cgi?id=3392644 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-21686
https://notcve.org/view.php?id=CVE-2020-21686
22 Aug 2023 — A stack-use-after-scope issue discovered in expand_mmac_params function in preproc.c in nasm before 2.15.04 allows remote attackers to cause a denial of service via crafted asm file. • https://bugzilla.nasm.us/show_bug.cgi?id=3392643 • CWE-562: Return of Stack Variable Address •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-21687
https://notcve.org/view.php?id=CVE-2020-21687
22 Aug 2023 — Buffer Overflow vulnerability in scan function in stdscan.c in nasm 2.15rc0 allows remote attackers to cause a denial of service via crafted asm file. • https://bugzilla.nasm.us/show_bug.cgi?id=3392645 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2022-44370 – Gentoo Linux Security Advisory 202312-09
https://notcve.org/view.php?id=CVE-2022-44370
29 Mar 2023 — NASM v2.16 was discovered to contain a heap buffer overflow in the component quote_for_pmake() asm/nasm.c:856 Multiple vulnerabilities have been discovered in NASM, the worst of which could lead to arbitrary code execution. Versions greater than or equal to 2.16.01 are affected. • https://bugzilla.nasm.us/show_bug.cgi?id=3392815 • CWE-787: Out-of-bounds Write •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 1CVE-2020-18974
https://notcve.org/view.php?id=CVE-2020-18974
25 Aug 2021 — Buffer Overflow in Netwide Assembler (NASM) v2.15.xx allows attackers to cause a denial of service via 'crc64i' in the component 'nasmlib/crc64'. This issue is different than CVE-2019-7147. Un desbordamiento del búfer en Netwide Assembler (NASM) versión v2.15.xx, permite a atacantes causar una denegación de servicio por medio de "crc64i" en el componente "nasmlib/crc64". Este problema es diferente de CVE-2019-7147. • https://bugzilla.nasm.us/show_bug.cgi?id=3392568 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-24242
https://notcve.org/view.php?id=CVE-2020-24242
25 Aug 2020 — In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_text in asm/preproc.c by accessing READ memory. En Netwide Assembler (NASM) versión 2.15rc10, una SEGV puede ser activada en la función tok_text en el archivo asm/preproc.c mediante el acceso a la memoria READ • https://bugzilla.nasm.us/show_bug.cgi?id=3392708 •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-24241
https://notcve.org/view.php?id=CVE-2020-24241
25 Aug 2020 — In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c. En Netwide Assembler (NASM) versión 2.15rc10, se presenta un uso de la memoria previamente liberada en la función saa_wbytes en el archivo nasmlib/saa.c • https://bugzilla.nasm.us/show_bug.cgi?id=3392707 • CWE-416: Use After Free •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1CVE-2019-20352
https://notcve.org/view.php?id=CVE-2019-20352
06 Jan 2020 — In Netwide Assembler (NASM) 2.15rc0, a heap-based buffer over-read occurs (via a crafted .asm file) in set_text_free when called from expand_one_smacro in asm/preproc.c. En Netwide Assembler (NASM) versión 2.15rc0, existe una lectura excesiva de búfer en la región heap de la memoria (por medio de un archivo .asm diseñado) en set_text_free cuando es llamado desde la función expand_one_smacro en el archivo asm/preproc.c. • https://bugzilla.nasm.us/show_bug.cgi?id=3392636 • CWE-125: Out-of-bounds Read •