Information on source package nasm

Available versions

ReleaseVersion
wheezy2.10.01-1
wheezy (security)2.10.01-1+deb7u1
jessie2.11.05-1
stretch2.12.01-1
buster2.13.02-0.1
sid2.13.03-1

Open issues

BugwheezyjessiestretchbustersidDescription
CVE-2018-8883vulnerable (no DSA, ignored)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableNetwide Assembler (NASM) 2.13.02rc2 has a buffer over-read in the ...
CVE-2018-8882vulnerable (no DSA, ignored)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableNetwide Assembler (NASM) 2.13.02rc2 has a stack-based buffer under-read ...
CVE-2018-8881vulnerable (no DSA, ignored)vulnerable (no DSA)vulnerable (no DSA)fixedfixedNetwide Assembler (NASM) 2.13.02rc2 has a heap-based buffer over-read ...
CVE-2018-10254vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableNetwide Assembler (NASM) 2.13 has a stack-based buffer over-read in the ...
CVE-2018-10016vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)vulnerablevulnerableNetwide Assembler (NASM) 2.14rc0 has a division-by-zero vulnerability ...
CVE-2017-17820vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...
CVE-2017-17819vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is an illegal address access ...
CVE-2017-17818vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer ...
CVE-2017-17817vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...
CVE-2017-17816vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...
CVE-2017-17815vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is an illegal address access ...
CVE-2017-17814vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in ...
CVE-2017-17813vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in the ...
CVE-2017-17812vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer ...
CVE-2017-17811vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer ...
CVE-2017-17810vulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA)fixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a "SEGV on unknown ...
CVE-2017-11111fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedIn Netwide Assembler (NASM) 2.14rc0, preproc.c allows remote attackers ...
CVE-2017-10686fixedvulnerable (no DSA)vulnerable (no DSA)fixedfixedIn Netwide Assembler (NASM) 2.14rc0, there are multiple heap use after ...

Open unimportant issues

BugwheezyjessiestretchbustersidDescription
CVE-2018-10316vulnerablevulnerablevulnerablevulnerablevulnerableNetwide Assembler (NASM) 2.14rc0 has an endless while loop in the ...
CVE-2017-14228vulnerablevulnerablevulnerablefixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is an illegal address access ...

Resolved issues

BugDescription
CVE-2008-7177Buffer overflow in the listing module in Netwide Assembler (NASM) ...
CVE-2008-2719Off-by-one error in the ppscan function (preproc.c) in Netwide ...
CVE-2005-1194Stack-based buffer overflow in the ieee_putascii function for nasm ...
CVE-2004-1287Buffer overflow in the error function in preproc.c for NASM 0.98.38 ...

Security announcements

DSA / DLADescription
DLA-1041-1nasm - security update
DSA-623-1nasm - buffer overflow

Search for package or bug name: Reporting problems