https://bugzilla.redhat.com/show_bug.cgi?id=1663906
Bug ID: 1663906
Summary: CVE-2018-1000886 nasm: Buffer overflow in
asm/stdscan.c:130 resulting in a denial of service
Product: Security Response
Hardware: All
OS: Linux
Status: NEW
Whiteboard: impact=low,public=20180906,reported=20181221,source=cv
e,cvss3=3.3/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A
:L,cwe=CWE-122,fedora-all/nasm=affected,rhel-5/nasm=ne
w,rhel-6/nasm=new,rhel-7/nasm=new,rhel-8/nasm=new
Component: vulnerability
Keywords: Security
Severity: low
Priority: low
Assignee: security-response-team(a)redhat.com
Reporter: anemec(a)redhat.com
CC: dominik(a)greysector.net,
java-sig-commits(a)lists.fedoraproject.org,
mizdebsk(a)redhat.com, nickc(a)redhat.com
Target Milestone: ---
Classification: Other
A buffer overflow vulnerability was found in nasm. A specially crafted file
could trigger endless macro generation and cause the application to crash.
Upstream issue:
https://bugzilla.nasm.us/show_bug.cgi?id=3392514
--
You are receiving this mail because:
You are on the CC list for the bug.