Wind River Support Network

HomeDefectsLIN10-3656

Fixed

LIN10-3656 : Security Advisory - nasm - CVE-2018-8883

Created: Apr 2, 2018 Updated: Dec 3, 2018

Resolved Date: Sep 3, 2018

Found In Version: 10.17.41.1

Fix Version: 10.17.41.11

Severity: Standard

Applicable for: Wind River Linux LTS 17

Component/s: Userspace

Description

Netwide Assembler (NASM) 2.13.02rc2 has a buffer over-read in the parse_line function in asm/parser.c via uncontrolled access to nasm_reg_flags.

https://nvd.nist.gov/vuln/detail/CVE-2018-8883

Other Downloads

Wind River Linux LTS 10.17.41.11
Wind River Linux LTS 10.17.41.12
Wind River Linux LTS 10.17.41.13
Wind River Linux LTS 10.17.41.14
Wind River Linux LTS 10.17.41.15
Wind River Linux LTS 10.17.41.16
Wind River Linux LTS 10.17.41.17
Wind River Linux LTS 10.17.41.18
Wind River Linux LTS 10.17.41.20
Wind River Linux LTS 10.17.41.21
Wind River Linux LTS 10.17.41.22
Wind River Linux LTS 10.17.41.23
Wind River Linux LTS 10.17.41.24
Wind River Linux LTS 10.17.41.25
Wind River Linux LTS 10.17.41.26
Wind River Linux LTS 10.17.41.27

CVEs

CVE-2018-8883