USN-3694-1: NASM vulnerabilities
28 June 2018
NASM could be made to crash or run programs if it opened a specially crafted file.
Releases
Packages
- nasm - General-purpose x86 assembler
Details
It was discovered that NASM incorrectly handled certain source files. If a
user or automated system were tricked into processing a specially crafted
source file, a remote attacker could use these issues to cause NASM to
crash, resulting in a denial of service, or possibly execute arbitrary
code.
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 14.04
In general, a standard system update will make all the necessary changes.