Your submission was sent successfully! Close

CVE-2018-19214

Published: 12 November 2018

Netwide Assembler (NASM) 2.14rc15 has a heap-based buffer over-read in expand_mmac_params in asm/preproc.c for insufficient input.

Priority

Negligible

CVSS 3 base score: 7.8

Status

Package Release Status
nasm
Launchpad, Ubuntu, Debian
bionic Needed

cosmic Ignored
(reached end-of-life)
disco Not vulnerable
(2.14-1)
eoan Ignored
(reached end-of-life)
focal Needed

groovy Ignored
(reached end-of-life)
hirsute Ignored
(reached end-of-life)
impish Ignored
(reached end-of-life)
jammy Needed

precise Does not exist

trusty Does not exist
(trusty was needed)
upstream Needs triage

xenial Ignored
(end of standard support, was needed)
Patches:
upstream: https://repo.or.cz/nasm.git/commit/661f723d39e03ca6eb05d7376a43ca33db478354