[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

CVE-2019-6290 -- nasm

ID: oval:org.secpod.oval:def:2000228Date: (C)2019-04-23   (M)2022-03-25
Class: VULNERABILITYFamily: unix




An infinite recursion issue was discovered in eval.c in Netwide Assembler through 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in certain scenarios involving lots of "{" characters. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted asm file.

Platform:
Debian 8.x
Debian 9.x
Product:
nasm
Reference:
CVE-2019-6290
CVE    1
CVE-2019-6290
CPE    3
cpe:/o:debian:debian_linux:8.x
cpe:/o:debian:debian_linux:9.x
cpe:/a:nasm:nasm

© SecPod Technologies