CVE-2023-37732

Опубликовано: 26 июл. 2023

Источник: debian

EPSS Низкий

Описание

Yasm v1.3.0.78 was found prone to NULL Pointer Dereference in /libyasm/intnum.c and /elf/elf.c, which allows the attacker to cause a denial of service via a crafted file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
yasm	unfixed			package

Примечания

https://github.com/yasm/yasm/issues/233
https://github.com/yasm/yasm/commit/2cd3bb50e256f5ed5f611ac611d25fe673f2cec3
Crash in CLI tool, no security impact

EPSS

Процентиль: 6%

0.00026

Низкий

Связанные уязвимости

CVE-2023-37732

CVSS3: 5.5

ubuntu

больше 2 лет назад

Yasm v1.3.0.78 was found prone to NULL Pointer Dereference in /libyasm/intnum.c and /elf/elf.c, which allows the attacker to cause a denial of service via a crafted file.

CVE-2023-37732

CVSS3: 5.5

redhat

больше 2 лет назад

Yasm v1.3.0.78 was found prone to NULL Pointer Dereference in /libyasm/intnum.c and /elf/elf.c, which allows the attacker to cause a denial of service via a crafted file.

CVE-2023-37732

CVSS3: 5.5

nvd

больше 2 лет назад

Yasm v1.3.0.78 was found prone to NULL Pointer Dereference in /libyasm/intnum.c and /elf/elf.c, which allows the attacker to cause a denial of service via a crafted file.

CVE-2023-37732

CVSS3: 5.5

msrc

6 месяцев назад

Описание отсутствует

ROS-20230825-06

CVSS3: 5.5

redos

больше 2 лет назад

Уязвимость yasm

EPSS

Процентиль: 6%

0.00026

Низкий