Vulnerabilities (CVE)

Filtered by vendor Nasm Subscribe

Filtered by product Netwide Assmembler

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2017-17817	2 Canonical, Nasm	2 Ubuntu Linux, Netwide Assmembler	2019-03-26	4.3 MEDIUM	5.5 MEDIUM
In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_verror in asm/preproc.c that will cause a remote denial of service attack.
CVE-2017-17819	2 Canonical, Nasm	2 Ubuntu Linux, Netwide Assmembler	2019-03-26	4.3 MEDIUM	5.5 MEDIUM
In Netwide Assembler (NASM) 2.14rc0, there is an illegal address access in the function find_cc() in asm/preproc.c that will cause a remote denial of service attack, because pointers associated with skip_white_ calls are not validated.
CVE-2017-17820	2 Canonical, Nasm	2 Ubuntu Linux, Netwide Assmembler	2019-03-26	4.3 MEDIUM	5.5 MEDIUM
In Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_list_one_macro in asm/preproc.c that will lead to a remote denial of service attack, related to mishandling of operand-type errors.