CVE-2018-8882

Опубликовано: 20 мар. 2018

Источник: debian

EPSS Низкий

Описание

Netwide Assembler (NASM) 2.13.02rc2 has a stack-based buffer under-read in the function ieee_shr in asm/float.c via a large shift value.

Пакет	Статус	Версия исправления	Релиз	Тип
nasm	fixed	2.14-1		package
nasm	no-dsa		stretch	package
nasm	no-dsa		jessie	package
nasm	ignored		wheezy	package

https://bugzilla.nasm.us/show_bug.cgi?id=3392445
https://github.com/netwide-assembler/nasm/commit/c7c28357c85fb0bf4105419195bc204aea0fef35

EPSS

Процентиль: 35%

0.00145

Низкий

CVE-2018-8882

CVSS3: 7.8

ubuntu

почти 8 лет назад

Netwide Assembler (NASM) 2.13.02rc2 has a stack-based buffer under-read in the function ieee_shr in asm/float.c via a large shift value.

CVE-2018-8882

CVSS3: 3.3

redhat

больше 8 лет назад

Netwide Assembler (NASM) 2.13.02rc2 has a stack-based buffer under-read in the function ieee_shr in asm/float.c via a large shift value.

CVE-2018-8882

CVSS3: 7.8

nvd

почти 8 лет назад

Netwide Assembler (NASM) 2.13.02rc2 has a stack-based buffer under-read in the function ieee_shr in asm/float.c via a large shift value.

GHSA-3pgv-pw29-xppm

CVSS3: 7.8

github

больше 3 лет назад

Netwide Assembler (NASM) 2.13.02rc2 has a stack-based buffer under-read in the function ieee_shr in asm/float.c via a large shift value.

openSUSE-SU-2020:0954-1

suse-cvrf

больше 5 лет назад

Security update for nasm

EPSS

Процентиль: 35%

0.00145

Низкий