Wind River Support Network

HomeDefectsLIN1018-3212

Fixed

LIN1018-3212 : Security Advisory - nasm - CVE-2018-19755

Created: Dec 19, 2018 Updated: Jan 16, 2019

Resolved Date: Dec 25, 2018

Found In Version: unknown

Fix Version: 10.18.44.3

Severity: Standard

Applicable for: Wind River Linux LTS 18

Component/s: Userspace

Description

There is an illegal address access at asm/preproc.c (function: is_mmacro) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service (out-of-bounds array access) because a certain conversion can result in a negative integer.

https://nvd.nist.gov/vuln/detail/CVE-2018-19755

CVEs

CVE-2018-19755