ALAS2-2023-2277 --- nasmID: oval:org.secpod.oval:def:1701817 | Date: (C)2023-10-26 (M)2023-12-26 |
Class: PATCH | Family: unix |
A Use After Free vulnerability in function new_Token in asm/preproc.c in nasm 2.14.02 allows attackers to cause a denial of service via crafted nasm command. A Segmentation Fault issue discovered in in ieee_segment function in outieee.c in nasm 2.14.03 and 2.15 allows remote attackers to cause a denial of service via crafted assembly file. NASM v2.16 was discovered to contain a segmentation violation in the component ieee_write_file at /output/outieee.c