PT-2023-23436 · Yasm +1 · Yasm +1
Daisypoop
·
Published
2023-05-17
·
Updated
2025-01-22
·
CVE-2023-31724
CVSS v3.1
7.8
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Exploit
Fix
Related Identifiers
Affected Products
Debian
Yasm
Daisypoop
·
Published
2023-05-17
·
Updated
2025-01-22
·
CVE-2023-31724
7.8
High
| Base vector | Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
yasm version 1.3.0.55.g101bc
Description:
A segmentation violation was discovered in yasm via the function `do directive` at `/nasm/nasm-pp.c`.
Recommendations:
For yasm version 1.3.0.55.g101bc, consider restricting access to the `do directive` function as a temporary workaround until a patch is available.
Exploit
Fix