Описание
In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_text in asm/preproc.c by accessing READ memory.
Отчет
nasm as shipped with Red Hat Enterprise Linux 7 and 8 is not affected by this flaw because the vulnerable code was introduced in a newer version of nasm.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | nasm | Out of support scope | ||
| Red Hat Enterprise Linux 6 | nasm | Out of support scope | ||
| Red Hat Enterprise Linux 7 | nasm | Not affected |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-476
https://bugzilla.redhat.com/show_bug.cgi?id=1872747nasm: segmentation fault in tok_text function in asm/preproc.c by accessing read memory
EPSS
Процентиль: 34%
0.00137
Низкий
5.5 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.5
ubuntu
больше 5 лет назад
In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_text in asm/preproc.c by accessing READ memory.
CVSS3: 5.5
nvd
больше 5 лет назад
In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_text in asm/preproc.c by accessing READ memory.
CVSS3: 5.5
debian
больше 5 лет назад
In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_tex ...
github
больше 3 лет назад
In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_text in asm/preproc.c by accessing READ memory.
EPSS
Процентиль: 34%
0.00137
Низкий
5.5 Medium
CVSS3