Описание
Yasm v1.3.0.78 was found prone to NULL Pointer Dereference in /libyasm/intnum.c and /elf/elf.c, which allows the attacker to cause a denial of service via a crafted file.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 7 | yasm | Out of support scope | ||
| Red Hat Enterprise Linux 8 | yasm | Will not fix |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-400
https://bugzilla.redhat.com/show_bug.cgi?id=2226934yasm: SEGV in yasm/libyasm/intnum.c in function yasm_intnum_copy()
EPSS
Процентиль: 5%
0.00025
Низкий
5.5 Medium
CVSS3
Связанные уязвимости
CVSS3: 5.5
ubuntu
почти 2 года назад
Yasm v1.3.0.78 was found prone to NULL Pointer Dereference in /libyasm/intnum.c and /elf/elf.c, which allows the attacker to cause a denial of service via a crafted file.
CVSS3: 5.5
nvd
почти 2 года назад
Yasm v1.3.0.78 was found prone to NULL Pointer Dereference in /libyasm/intnum.c and /elf/elf.c, which allows the attacker to cause a denial of service via a crafted file.
CVSS3: 5.5
debian
почти 2 года назад
Yasm v1.3.0.78 was found prone to NULL Pointer Dereference in /libyasm ...
EPSS
Процентиль: 5%
0.00025
Низкий
5.5 Medium
CVSS3