Information on source package nasm

Available versions

ReleaseVersion
jessie2.11.05-1
stretch2.12.01-1
buster2.14-1
bullseye2.15.05-1
bookworm2.16.01-1
trixie2.16.03-1
sid2.16.03-1

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2020-24978vulnerablevulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedIn NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline ...
CVE-2020-21686vulnerablevulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedfixedA stack-use-after-scope issue discovered in expand_mmac_params functio ...
CVE-2018-19216vulnerable (no DSA, ignored)vulnerable (no DSA)fixedfixedfixedfixedfixedNetwide Assembler (NASM) before 2.13.02 has a use-after-free in detoke ...
CVE-2018-10254vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedNetwide Assembler (NASM) 2.13 has a stack-based buffer over-read in th ...
CVE-2018-10016vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedNetwide Assembler (NASM) 2.14rc0 has a division-by-zero vulnerability ...
CVE-2018-8883vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedNetwide Assembler (NASM) 2.13.02rc2 has a buffer over-read in the pars ...
CVE-2018-8882vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedNetwide Assembler (NASM) 2.13.02rc2 has a stack-based buffer under-rea ...
CVE-2018-8881vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedNetwide Assembler (NASM) 2.13.02rc2 has a heap-based buffer over-read ...
CVE-2017-17820vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_l ...
CVE-2017-17819vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is an illegal address acces ...
CVE-2017-17818vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over ...
CVE-2017-17817vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_v ...
CVE-2017-17816vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in pp_g ...
CVE-2017-17815vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is an illegal address acces ...
CVE-2017-17814vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in do_d ...
CVE-2017-17813vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a use-after-free in the ...
CVE-2017-17812vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over ...
CVE-2017-17811vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over ...
CVE-2017-17810vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is a "SEGV on unknown addre ...
CVE-2017-11111vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, preproc.c allows remote attackers ...
CVE-2017-10686vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there are multiple heap use after ...

Open unimportant issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2023-38668vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableStack-based buffer over-read in disasm in nasm 2.16 allows attackers t ...
CVE-2023-38667vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableStack-based buffer over-read in function disasm in nasm 2.16 allows at ...
CVE-2023-38665vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableNull pointer dereference in ieee_write_file in nasm 2.16rc0 allows att ...
CVE-2023-31722vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableThere exists a heap buffer overflow in nasm 2.16.02rc1 (GitHub commit: ...
CVE-2022-46457vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableNASM v2.16 was discovered to contain a segmentation violation in the c ...
CVE-2022-46456vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableNASM v2.16 was discovered to contain a global buffer overflow in the c ...
CVE-2022-44370vulnerablevulnerablevulnerablevulnerablefixedfixedfixedNASM v2.16 was discovered to contain a heap buffer overflow in the com ...
CVE-2022-44369vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableNASM 2.16 (development) is vulnerable to 476: Null Pointer Dereference ...
CVE-2022-44368vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableNASM v2.16 was discovered to contain a null pointer deference in the N ...
CVE-2022-41420vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerablenasm v2.16 was discovered to contain a stack overflow in the Ndisasm c ...
CVE-2022-29654vulnerablevulnerablevulnerablevulnerablefixedfixedfixedBuffer overflow vulnerability in quote_for_pmake in asm/nasm.c in nasm ...
CVE-2021-45257vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableAn infinite loop vulnerability exists in nasm 2.16rc0 via the gpaste_t ...
CVE-2021-45256vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableA Null Pointer Dereference vulnerability existfs in nasm 2.16rc0 via a ...
CVE-2021-33452vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in NASM version 2.16rc0. There are memory leak ...
CVE-2021-33450vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in NASM version 2.16rc0. There are memory leak ...
CVE-2020-24242vulnerablevulnerablevulnerablefixedfixedfixedfixedIn Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_tex ...
CVE-2020-24241vulnerablevulnerablevulnerablefixedfixedfixedfixedIn Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in ...
CVE-2020-21687vulnerablevulnerablevulnerablefixedfixedfixedfixedBuffer Overflow vulnerability in scan function in stdscan.c in nasm 2. ...
CVE-2020-21685vulnerablevulnerablevulnerablefixedfixedfixedfixedBuffer Overflow vulnerability in hash_findi function in hashtbl.c in n ...
CVE-2020-21528vulnerablevulnerablevulnerablevulnerablefixedfixedfixedA Segmentation Fault issue discovered in in ieee_segment function in o ...
CVE-2020-18974vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableBuffer Overflow in Netwide Assembler (NASM) v2.15.xx allows attackers ...
CVE-2020-18780vulnerablevulnerablevulnerablefixedfixedfixedfixedA Use After Free vulnerability in function new_Token in asm/preproc.c ...
CVE-2019-20352vulnerablevulnerablevulnerablefixedfixedfixedfixedIn Netwide Assembler (NASM) 2.15rc0, a heap-based buffer over-read occ ...
CVE-2019-20334vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableIn Netwide Assembler (NASM) 2.14.02, stack consumption occurs in expr# ...
CVE-2019-14248vulnerablevulnerablevulnerablefixedfixedfixedfixedIn libnasm.a in Netwide Assembler (NASM) 2.14.xx, asm/pragma.c allows ...
CVE-2019-8343vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableIn Netwide Assembler (NASM) 2.14.02, there is a use-after-free in past ...
CVE-2019-6291vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableAn issue was discovered in the function expr6 in eval.c in Netwide Ass ...
CVE-2019-6290vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableAn infinite recursion issue was discovered in eval.c in Netwide Assemb ...
CVE-2018-1000886vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerablenasm version 2.14.01rc5, 2.15 contains a Buffer Overflow vulnerability ...
CVE-2018-1000667vulnerablevulnerablefixedfixedfixedfixedfixedNASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains ...
CVE-2018-20538vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableThere is a use-after-free at asm/preproc.c (function pp_getline) in Ne ...
CVE-2018-20535vulnerablevulnerablevulnerablefixedfixedfixedfixedThere is a use-after-free at asm/preproc.c (function pp_getline) in Ne ...
CVE-2018-19755vulnerablevulnerablevulnerablefixedfixedfixedfixedThere is an illegal address access at asm/preproc.c (function: is_mmac ...
CVE-2018-19215vulnerablevulnerablefixedfixedfixedfixedfixedNetwide Assembler (NASM) 2.14rc16 has a heap-based buffer over-read in ...
CVE-2018-19214vulnerablevulnerablefixedfixedfixedfixedfixedNetwide Assembler (NASM) 2.14rc15 has a heap-based buffer over-read in ...
CVE-2018-19213vulnerablevulnerablevulnerablevulnerablevulnerablevulnerablevulnerableNetwide Assembler (NASM) through 2.14rc16 has memory leaks that may le ...
CVE-2018-19209vulnerablevulnerablefixedfixedfixedfixedfixedNetwide Assembler (NASM) 2.14rc15 has a NULL pointer dereference in th ...
CVE-2018-16999vulnerablevulnerablefixedfixedfixedfixedfixedNetwide Assembler (NASM) 2.14rc15 has an invalid memory write (segment ...
CVE-2018-16517vulnerablevulnerablefixedfixedfixedfixedfixedasm/labels.c in Netwide Assembler (NASM) is prone to NULL Pointer Dere ...
CVE-2018-16382vulnerablevulnerablefixedfixedfixedfixedfixedNetwide Assembler (NASM) 2.14rc15 has a buffer over-read in x86/regfla ...
CVE-2018-10316vulnerablevulnerablefixedfixedfixedfixedfixedNetwide Assembler (NASM) 2.14rc0 has an endless while loop in the asse ...
CVE-2017-14228vulnerablevulnerablefixedfixedfixedfixedfixedIn Netwide Assembler (NASM) 2.14rc0, there is an illegal address acces ...

Resolved issues

BugDescription
CVE-2019-7147A buffer over-read exists in the function crc64ib in crc64.c in nasmli ...
CVE-2008-7177Buffer overflow in the listing module in Netwide Assembler (NASM) befo ...
CVE-2008-2719Off-by-one error in the ppscan function (preproc.c) in Netwide Assembl ...
CVE-2005-1194Stack-based buffer overflow in the ieee_putascii function for nasm 0.9 ...
CVE-2004-1287Buffer overflow in the error function in preproc.c for NASM 0.98.38 1. ...

Security announcements

DSA / DLADescription
DLA-1041-1nasm - security update
DSA-623-1nasm - buffer overflow

Search for package or bug name: Reporting problems