Information on source package nasm

Available versions

ReleaseVersion
stretch2.12.01-1
buster2.14-1
bullseye2.15.05-1
bookworm2.15.05-1
sid2.15.05-1

Open issues

BugstretchbusterbullseyebookwormsidDescription
CVE-2020-24978vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedIn NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline ...
CVE-2018-19216vulnerable (no DSA)fixedfixedfixedfixedNetwide Assembler (NASM) before 2.13.02 has a use-after-free in detoke ...
CVE-2018-10254vulnerable (no DSA)fixedfixedfixedfixedNetwide Assembler (NASM) 2.13 has a stack-based buffer over-read in th ...
CVE-2018-10016vulnerable (no DSA)fixedfixedfixedfixedNetwide Assembler (NASM) 2.14rc0 has a division-by-zero vulnerability ...
CVE-2018-8883vulnerable (no DSA)fixedfixedfixedfixedNetwide Assembler (NASM) 2.13.02rc2 has a buffer over-read in the pars ...
CVE-2018-8882vulnerable (no DSA)fixedfixedfixedfixedNetwide Assembler (NASM) 2.13.02rc2 has a stack-based buffer under-rea ...
CVE-2018-8881vulnerable (no DSA)fixedfixedfixedfixedNetwide Assembler (NASM) 2.13.02rc2 has a heap-based buffer over-read ...
CVE-2017-17820vulnerable (no DSA)fixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_l ...
CVE-2017-17819vulnerable (no DSA)fixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is an illegal address acces ...
CVE-2017-17818vulnerable (no DSA)fixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over ...
CVE-2017-17817vulnerable (no DSA)fixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_v ...
CVE-2017-17816vulnerable (no DSA)fixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_g ...
CVE-2017-17815vulnerable (no DSA)fixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is an illegal address acces ...
CVE-2017-17814vulnerable (no DSA)fixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in do_d ...
CVE-2017-17813vulnerable (no DSA)fixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in the ...
CVE-2017-17812vulnerable (no DSA)fixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over ...
CVE-2017-17811vulnerable (no DSA)fixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over ...
CVE-2017-17810vulnerable (no DSA)fixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a "SEGV on unknown addre ...
CVE-2017-11111vulnerable (no DSA)fixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, preproc.c allows remote attackers ...
CVE-2017-10686vulnerable (no DSA)fixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there are multiple heap use after ...

Open unimportant issues

BugstretchbusterbullseyebookwormsidDescription
CVE-2020-24242vulnerablevulnerablefixedfixedfixedIn Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_tex ...
CVE-2020-24241vulnerablevulnerablefixedfixedfixedIn Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in ...
CVE-2020-18974vulnerablevulnerablevulnerablevulnerablevulnerableBuffer Overflow in Netwide Assembler (NASM) v2.15.xx allows attackers ...
CVE-2019-20352vulnerablevulnerablefixedfixedfixedIn Netwide Assembler (NASM) 2.15rc0, a heap-based buffer over-read occ ...
CVE-2019-20334vulnerablevulnerablevulnerablevulnerablevulnerableIn Netwide Assembler (NASM) 2.14.02, stack consumption occurs in expr# ...
CVE-2019-14248vulnerablevulnerablefixedfixedfixedIn libnasm.a in Netwide Assembler (NASM) 2.14.xx, asm/pragma.c allows ...
CVE-2019-8343vulnerablevulnerablevulnerablevulnerablevulnerableIn Netwide Assembler (NASM) 2.14.02, there is a use-after-free in past ...
CVE-2019-6291vulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in the function expr6 in eval.c in Netwide Ass ...
CVE-2019-6290vulnerablevulnerablevulnerablevulnerablevulnerableAn infinite recursion issue was discovered in eval.c in Netwide Assemb ...
CVE-2018-1000886vulnerablevulnerablevulnerablevulnerablevulnerablenasm version 2.14.01rc5, 2.15 contains a Buffer Overflow vulnerability ...
CVE-2018-1000667vulnerablefixedfixedfixedfixedNASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains ...
CVE-2018-20538vulnerablevulnerablevulnerablevulnerablevulnerableThere is a use-after-free at asm/preproc.c (function pp_getline) in Ne ...
CVE-2018-20535vulnerablevulnerablefixedfixedfixedThere is a use-after-free at asm/preproc.c (function pp_getline) in Ne ...
CVE-2018-19755vulnerablevulnerablefixedfixedfixedThere is an illegal address access at asm/preproc.c (function: is_mmac ...
CVE-2018-19215vulnerablefixedfixedfixedfixedNetwide Assembler (NASM) 2.14rc16 has a heap-based buffer over-read in ...
CVE-2018-19214vulnerablefixedfixedfixedfixedNetwide Assembler (NASM) 2.14rc15 has a heap-based buffer over-read in ...
CVE-2018-19213vulnerablevulnerablevulnerablevulnerablevulnerableNetwide Assembler (NASM) through 2.14rc16 has memory leaks that may le ...
CVE-2018-19209vulnerablefixedfixedfixedfixedNetwide Assembler (NASM) 2.14rc15 has a NULL pointer dereference in th ...
CVE-2018-16999vulnerablefixedfixedfixedfixedNetwide Assembler (NASM) 2.14rc15 has an invalid memory write (segment ...
CVE-2018-16517vulnerablefixedfixedfixedfixedasm/labels.c in Netwide Assembler (NASM) is prone to NULL Pointer Dere ...
CVE-2018-16382vulnerablefixedfixedfixedfixedNetwide Assembler (NASM) 2.14rc15 has a buffer over-read in x86/regfla ...
CVE-2018-10316vulnerablefixedfixedfixedfixedNetwide Assembler (NASM) 2.14rc0 has an endless while loop in the asse ...
CVE-2017-14228vulnerablefixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is an illegal address acces ...

Resolved issues

BugDescription
CVE-2019-7147A buffer over-read exists in the function crc64ib in crc64.c in nasmli ...
CVE-2008-7177Buffer overflow in the listing module in Netwide Assembler (NASM) befo ...
CVE-2008-2719Off-by-one error in the ppscan function (preproc.c) in Netwide Assembl ...
CVE-2005-1194Stack-based buffer overflow in the ieee_putascii function for nasm 0.9 ...
CVE-2004-1287Buffer overflow in the error function in preproc.c for NASM 0.98.38 1. ...

Security announcements

DSA / DLADescription
DLA-1041-1nasm - security update
DSA-623-1nasm - buffer overflow

Search for package or bug name: Reporting problems