CVE-2018-8883

Priority
Description
Netwide Assembler (NASM) 2.13.02rc2 has a buffer over-read in the
parse_line function in asm/parser.c via uncontrolled access to
nasm_reg_flags.
Notes
mdeslaursame fix as CVE-2018-16382
Package
Source: nasm (LP Ubuntu Debian)
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was needed)
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):needed
Ubuntu 19.04 (Disco Dingo):not-affected (2.14-1)
Ubuntu 19.10 (Eoan Ermine):needed
Ubuntu 20.04 (Focal Fossa):needed
Patches:
Upstream:https://repo.or.cz/nasm.git/commit/3c755dac88039b718d52ef56e8f74b5f65f3b55b
More Information

Updated: 2019-12-05 19:57:59 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)