CVE-2022-29654

medium

Description

Buffer overflow vulnerability in quote_for_pmake in asm/nasm.c in nasm before 2.15.05 allows attackers to cause a denial of service via crafted file.

References

https://www.nasm.us/pub/nasm/releasebuilds/2.15.05/

https://gist.github.com/naihsin/b96e2c5c2c81621b46557fd7aacd165f

https://gcc.gnu.org/onlinedocs/gcc/Instrumentation-Options.html

Details

Source: Mitre, NVD

Published: 2023-08-22

Updated: 2023-08-25

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Severity: Medium