CVE-2022-46456: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

January 4, 2023 (updated January 18, 2023)

NASM v2.16 was discovered to contain a global buffer overflow in the component dbgdbg_typevalue at /output/outdbg.c.

References

bugzilla.nasm.us/show_bug.cgi?id=3392814
nvd.nist.gov/vuln/detail/CVE-2022-46456

Detect and mitigate CVE-2022-46456 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →