CVE-2017-17818

Опубликовано: 21 дек. 2017

Источник: redhat

CVSS3: 3.3

EPSS Низкий

Описание

In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in paste_tokens in asm/preproc.c.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	nasm	Will not fix
Red Hat Enterprise Linux 6	nasm	Will not fix
Red Hat Enterprise Linux 7	nasm	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-125

https://bugzilla.redhat.com/show_bug.cgi?id=1529332nasm: Heap-based buffer over-read in paste_tokens function in asm/preproc.c

EPSS

Процентиль: 71%

0.00683

Низкий

3.3 Low

CVSS3

Связанные уязвимости

CVE-2017-17818

CVSS3: 7.5

ubuntu

около 8 лет назад

In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in paste_tokens in asm/preproc.c.

CVE-2017-17818

CVSS3: 7.5

nvd

около 8 лет назад

In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in paste_tokens in asm/preproc.c.

CVE-2017-17818

CVSS3: 7.5

debian

около 8 лет назад

In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over ...

GHSA-3mqq-qfwx-mfhq

CVSS3: 7.5

github

больше 3 лет назад

In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in paste_tokens in asm/preproc.c.

SUSE-SU-2020:1864-1

suse-cvrf

больше 5 лет назад

Security update for nasm

EPSS

Процентиль: 71%

0.00683

Низкий

3.3 Low

CVSS3