Описание
nasm v2.16 was discovered to contain a stack overflow in the Ndisasm component
A stack-based buffer overflow was found in the ndisasm utility of the NASM package. The issue occurs when a specially crafted file is processed by the ndisasm utility, which causes the application to crash.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | nasm | Out of support scope | ||
| Red Hat Enterprise Linux 7 | nasm | Out of support scope |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-121
https://bugzilla.redhat.com/show_bug.cgi?id=2133075nasm: stack-based buffer overflow in the ndisasm component
EPSS
Процентиль: 8%
0.00031
Низкий
5.5 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.5
ubuntu
больше 3 лет назад
nasm v2.16 was discovered to contain a stack overflow in the Ndisasm component
CVSS3: 5.5
nvd
больше 3 лет назад
nasm v2.16 was discovered to contain a stack overflow in the Ndisasm component
CVSS3: 5.5
debian
больше 3 лет назад
nasm v2.16 was discovered to contain a stack overflow in the Ndisasm c ...
CVSS3: 5.5
github
больше 3 лет назад
nasm v2.16 was discovered to contain a stack overflow in the Ndisasm component
EPSS
Процентиль: 8%
0.00031
Низкий
5.5 Medium
CVSS3