CVE-2018-20535

Опубликовано: 28 дек. 2018

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 4.3

CVSS3: 5.5

Описание

There is a use-after-free at asm/preproc.c (function pp_getline) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service during a line-number increment attempt.

Релиз	Статус	Примечание
bionic	ignored	end of standard support, was deferred
cosmic	ignored	end of life
devel	not-affected	2.15.04-1
disco	ignored	end of life
eoan	ignored	end of life
esm-apps/bionic	deferred	2019-04-25
esm-apps/focal	deferred	2019-04-25
esm-apps/jammy	not-affected	2.15.04-1
esm-apps/noble	not-affected	2.15.04-1
esm-apps/xenial	deferred	2019-04-25

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2018-20535

EPSS

Процентиль: 33%

0.00131

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2018-20535

CVSS3: 3.3

redhat

около 7 лет назад

There is a use-after-free at asm/preproc.c (function pp_getline) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service during a line-number increment attempt.

CVE-2018-20535

CVSS3: 5.5

nvd

около 7 лет назад

There is a use-after-free at asm/preproc.c (function pp_getline) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service during a line-number increment attempt.

CVE-2018-20535

CVSS3: 5.5

debian

около 7 лет назад

There is a use-after-free at asm/preproc.c (function pp_getline) in Ne ...

GHSA-rvm6-q4p6-g665

CVSS3: 5.5

github

больше 3 лет назад

There is a use-after-free at asm/preproc.c (function pp_getline) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service during a line-number increment attempt.

EPSS

Процентиль: 33%

0.00131

Низкий

4.3 Medium

CVSS2

5.5 Medium

CVSS3

CVE-2018-20535

Описание

Пакет nasm

Ссылки на источники

Связанные уязвимости