Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2018-1000667

Опубликовано: 06 сент. 2018
Источник: redhat
CVSS3: 2.5

Описание

NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains a memory corruption (crashed) of nasm when handling a crafted file due to function assemble_file(inname, depend_ptr) at asm/nasm.c:482. vulnerability in function assemble_file(inname, depend_ptr) at asm/nasm.c:482. that can result in aborting/crash nasm program. This attack appear to be exploitable via a specially crafted asm file..

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5nasmNot affected
Red Hat Enterprise Linux 6nasmWill not fix
Red Hat Enterprise Linux 7nasmFix deferred
Red Hat Enterprise Linux 8nasmWill not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-119
https://bugzilla.redhat.com/show_bug.cgi?id=1626256nasm: Memory corruption in assemble_file() function in asm/nasm.c:482

2.5 Low

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2018-1000667

CVSS3: 5.5
ubuntu
больше 7 лет назад

NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains a memory corruption (crashed) of nasm when handling a crafted file due to function assemble_file(inname, depend_ptr) at asm/nasm.c:482. vulnerability in function assemble_file(inname, depend_ptr) at asm/nasm.c:482. that can result in aborting/crash nasm program. This attack appear to be exploitable via a specially crafted asm file..

nvd логотип

CVE-2018-1000667

CVSS3: 5.5
nvd
больше 7 лет назад

NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains a memory corruption (crashed) of nasm when handling a crafted file due to function assemble_file(inname, depend_ptr) at asm/nasm.c:482. vulnerability in function assemble_file(inname, depend_ptr) at asm/nasm.c:482. that can result in aborting/crash nasm program. This attack appear to be exploitable via a specially crafted asm file..

debian логотип

CVE-2018-1000667

CVSS3: 5.5
debian
больше 7 лет назад

NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains ...

github логотип

GHSA-mx2f-ggfx-v955

CVSS3: 5.5
github
больше 3 лет назад

NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains a memory corruption (crashed) of nasm when handling a crafted file due to function assemble_file(inname, depend_ptr) at asm/nasm.c:482. vulnerability in function assemble_file(inname, depend_ptr) at asm/nasm.c:482. that can result in aborting/crash nasm program. This attack appear to be exploitable via a specially crafted asm file..

suse-cvrf логотип

openSUSE-SU-2020:0954-1

suse-cvrf
больше 5 лет назад

Security update for nasm

2.5 Low

CVSS3