PT-2023-9324 · Unknown+2 · Netwide Assembler+2
13579And24680
·
Published
2023-01-04
·
Updated
2024-08-15
·
CVE-2022-46457
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Netwide Assembler (NASM) version 2.16
Description
The issue is related to a segmentation violation in the
ieee write file component at /output/outieee.c of the Netwide Assembler (NASM). This can lead to a denial of service. The problem is associated with a memory boundary read issue.Recommendations
For Netwide Assembler (NASM) version 2.16, consider updating to a newer version that addresses the segmentation violation issue in the
ieee write file component. As a temporary workaround, restrict the use of the ieee write file function to minimize the risk of exploitation.Exploit
Fix
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Debian
Netwide Assembler
Red Os