Advisory Database
  • Advisories
  • Dependency Scanning
  1. nuget
  2. ›
  3. nasm
  4. ›
  5. CVE-2019-8343

CVE-2019-8343: Use After Free

February 15, 2019

In Netwide Assembler (NASM), there is a use-after-free in paste_tokens in asm/preproc.c.

References

  • bugzilla.nasm.us/show_bug.cgi?id=3392556
  • nvd.nist.gov/vuln/detail/CVE-2019-8343

Detect and mitigate CVE-2019-8343 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →

Affected versions

Version 2.14.02

Solution

Unfortunately, there is no solution available yet.

Impact 7.8 HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Learn more about CVSS

Weakness

  • CWE-416: Use After Free

Source file

nuget/nasm/CVE-2019-8343.yml

Spotted a mistake? Edit the file on GitLab.

  • Site Repo
  • About GitLab
  • Terms
  • Privacy Statement
  • Contact

Page generated Fri, 22 Nov 2024 00:15:02 +0000.