Wind River Support Network

HomeDefectsLIN9-6794
Fixed

LIN9-6794 : Security Advisory - nasm - CVE-2018-10254

Created: May 2, 2018    Updated: May 18, 2019
Resolved Date: Apr 19, 2019
Found In Version: 9.0.0.15
Fix Version: 9.0.0.21
Severity: Standard
Applicable for: Wind River Linux 9
Component/s: Userspace

Description

Netwide Assembler (NASM) 2.13 has a stack-based buffer over-read in the disasm function of the disasm/disasm.c file. Remote attackers could leverage this vulnerability to cause a denial of service or possibly have unspecified other impact via a crafted ELF file.

https://nvd.nist.gov/vuln/detail/CVE-2018-10254

CVEs


Live chat
Online