CVE-2020-24241

Опубликовано: 28 июл. 2020

Источник: redhat

CVSS3: 5.5

Описание

In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c.

Отчет

nasm as shipped with Red Hat Enterprise Linux 7 and 8 are not affected by this flaw because the vulnerable code was introduced in a newer version of nasm.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	nasm	Out of support scope
Red Hat Enterprise Linux 6	nasm	Out of support scope
Red Hat Enterprise Linux 7	nasm	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-416

https://bugzilla.redhat.com/show_bug.cgi?id=1872803nasm: use-after-free in saa_wbytes function in nasmlib/saa.c

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2020-24241

CVSS3: 5.5

ubuntu

больше 5 лет назад

In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c.

CVE-2020-24241

CVSS3: 5.5

nvd

больше 5 лет назад

In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c.

CVE-2020-24241

msrc

5 месяцев назад

In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c.

CVE-2020-24241

CVSS3: 5.5

debian

больше 5 лет назад

In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in ...

GHSA-x2g3-wj9f-6wcx

github

больше 3 лет назад

In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c.

5.5 Medium

CVSS3