CVE-2018-8881

Опубликовано: 20 мар. 2018

Источник: debian

Описание

Netwide Assembler (NASM) 2.13.02rc2 has a heap-based buffer over-read in the function tokenize in asm/preproc.c, related to an unterminated string.

Пакет	Статус	Версия исправления	Релиз	Тип
nasm	fixed	2.13.02-0.1		package
nasm	no-dsa		stretch	package
nasm	no-dsa		jessie	package
nasm	ignored		wheezy	package

https://bugzilla.nasm.us/show_bug.cgi?id=3392446
https://github.com/netwide-assembler/nasm/commit/3144e84add8b152cc7a71e44617ce6f21daa4ba3 (nasm-2.13.02rc3)

CVE-2018-8881

CVSS3: 7.3

ubuntu

почти 8 лет назад

Netwide Assembler (NASM) 2.13.02rc2 has a heap-based buffer over-read in the function tokenize in asm/preproc.c, related to an unterminated string.

CVE-2018-8881

CVSS3: 3.3

redhat

больше 8 лет назад

Netwide Assembler (NASM) 2.13.02rc2 has a heap-based buffer over-read in the function tokenize in asm/preproc.c, related to an unterminated string.

CVE-2018-8881

CVSS3: 7.3

nvd

почти 8 лет назад

Netwide Assembler (NASM) 2.13.02rc2 has a heap-based buffer over-read in the function tokenize in asm/preproc.c, related to an unterminated string.

GHSA-x2vw-jwp7-h598

CVSS3: 7.3

github

больше 3 лет назад

Netwide Assembler (NASM) 2.13.02rc2 has a heap-based buffer over-read in the function tokenize in asm/preproc.c, related to an unterminated string.

openSUSE-SU-2020:0954-1

suse-cvrf

больше 5 лет назад

Security update for nasm