CVE-2023-49554

Опубликовано: 03 янв. 2024

Источник: debian

EPSS Низкий

Описание

Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the do_directive function in the modules/preprocs/nasm/nasm-pp.c component.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
yasm	unfixed			package

Примечания

Crash in CLI tool, no security impact
https://github.com/yasm/yasm/issues/249

EPSS

Процентиль: 61%

0.00426

Низкий

Связанные уязвимости

CVE-2023-49554

CVSS3: 5.5

ubuntu

почти 2 года назад

Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the do_directive function in the modules/preprocs/nasm/nasm-pp.c component.

CVE-2023-49554

redhat

почти 2 года назад

Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the do_directive function in the modules/preprocs/nasm/nasm-pp.c component.

CVE-2023-49554

CVSS3: 5.5

nvd

почти 2 года назад

Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the do_directive function in the modules/preprocs/nasm/nasm-pp.c component.

CVE-2023-49554

msrc

3 месяца назад

Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the do_directive function in the modules/preprocs/nasm/nasm-pp.c component.

GHSA-4x52-4p76-xv6v

CVSS3: 5.5

github

почти 2 года назад

Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the do_directive function in the modules/preprocs/nasm/nasm-pp.c component.

EPSS

Процентиль: 61%

0.00426

Низкий