PT-2018-14869 · Netwide+2 · Netwide Assembler+2

Publicado

2018-01-16

·

Atualizado

2020-07-13

·

CVE-2018-19216

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Netwide Assembler (NASM) versions prior to 2.13.02
Description The issue is related to a use-after-free in the detoken function at asm/preproc.c.
Recommendations For versions prior to 2.13.02, update to version 2.13.02 or later to resolve the issue.

Exploit

Correção

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-416

Identificadores relacionados

ALT-PU-2018-1039
CVE-2018-19216
OPENSUSE-SU-2020:0952-1
OPENSUSE-SU-2020:0954-1
OPENSUSE-SU-2020_0952-1
OPENSUSE-SU-2020_0954-1
SUSE-SU-2020:1843-1

Produtos afetados

Alt Linux
Netwide Assembler
Suse