CVE-2020-24241

Published: 25 August 2020

In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c.

Priority

CVSS 3 base score: 5.5

Status

Package	Release	Status
nasm Launchpad, Ubuntu, Debian	bionic	Needs triage
	focal	Needs triage
	groovy	Not vulnerable (2.15.04-1)
	hirsute	Not vulnerable (2.15.04-1)
	impish	Not vulnerable (2.15.04-1)
	jammy	Not vulnerable (2.15.04-1)
	precise	Does not exist
	trusty	Does not exist
	upstream	Released (2.15.04-1)
	xenial	Ignored (end of standard support, was needs-triage)

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.