CVE-2020-24978

Опубликовано: 04 сент. 2020

Источник: redhat

CVSS3: 5.5

EPSS Низкий

Описание

In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7.

Отчет

This flaw does not affect nasm as shipped in Red Hat Enterprise Linux 7 or 8 as the vulnerable code was committed in a newer version of nasm.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	nasm	Out of support scope
Red Hat Enterprise Linux 6	nasm	Out of support scope
Red Hat Enterprise Linux 7	nasm	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-416

https://bugzilla.redhat.com/show_bug.cgi?id=1877786nasm: double-free vulnerability in pp_tokline asm/preproc.c

EPSS

Процентиль: 61%

0.00413

Низкий

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2020-24978

CVSS3: 9.8

ubuntu

больше 5 лет назад

In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7.

CVE-2020-24978

CVSS3: 9.8

nvd

больше 5 лет назад

In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7.

CVE-2020-24978

msrc

5 месяцев назад

In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7.

CVE-2020-24978

CVSS3: 9.8

debian

больше 5 лет назад

In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline ...

GHSA-4vwx-p2g9-hr37

CVSS3: 9.8

github

больше 3 лет назад

In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7.

EPSS

Процентиль: 61%

0.00413

Низкий

5.5 Medium

CVSS3