https://bugzilla.redhat.com/show_bug.cgi?id=2035084
Bug ID: 2035084 Summary: CVE-2021-45256 nasm: Null pointer dereference via asm/preproc.c Product: Security Response Hardware: All OS: Linux Status: NEW Component: vulnerability Keywords: Security Severity: low Priority: low Assignee: security-response-team@redhat.com Reporter: psampaio@redhat.com CC: dominik@greysector.net, java-sig-commits@lists.fedoraproject.org, mizdebsk@redhat.com, nickc@redhat.com, pbonzini@redhat.com Target Milestone: --- Classification: Other
A Null Pointer Dereference vulnerability existfs in nasm 2.16rc0 via asm/preproc.c.
References:
https://bugzilla.nasm.us/show_bug.cgi?id=3392789
https://bugzilla.redhat.com/show_bug.cgi?id=2035084
Pedro Sampaio psampaio@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Depends On| |2035086
Referenced Bugs:
https://bugzilla.redhat.com/show_bug.cgi?id=2035086 [Bug 2035086] CVE-2021-45256 nasm: Null pointer dereference via asm/preproc.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2035084
--- Comment #1 from Pedro Sampaio psampaio@redhat.com --- Created nasm tracking bugs for this issue:
Affects: fedora-all [bug 2035086]
https://bugzilla.redhat.com/show_bug.cgi?id=2035084
Pedro Sampaio psampaio@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Blocks| |2035091
https://bugzilla.redhat.com/show_bug.cgi?id=2035084
--- Comment #2 from Product Security DevOps Team prodsec-dev@redhat.com --- This bug is now closed. Further updates for individual products will be reflected on the CVE page(s):
https://access.redhat.com/security/cve/cve-2021-45256
https://bugzilla.redhat.com/show_bug.cgi?id=2035084
Product Security DevOps Team prodsec-dev@redhat.com changed:
What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |NOTABUG Status|NEW |CLOSED Last Closed| |2022-01-07 09:11:42
https://bugzilla.redhat.com/show_bug.cgi?id=2035084
--- Doc Text *updated* by TEJ RATHI trathi@redhat.com --- A null-pointer dereference flaw was found in NASMs' preproc.c. An attacker with local network access could pass specially crafted unknown input causing an application to halt or crash leading to Denial of Service.
https://bugzilla.redhat.com/show_bug.cgi?id=2035084
--- Doc Text *updated* by Eric Christensen sparks@redhat.com --- A null-pointer dereference flaw was found in nasm's preproc.c. An attacker with local network access could pass specially crafted unknown input causing an application to halt or crash, leading to a denial of service.
https://bugzilla.redhat.com/show_bug.cgi?id=2035084 Bug 2035084 depends on bug 2035086, which changed state.
Bug 2035086 Summary: CVE-2021-45256 nasm: Null pointer dereference via asm/preproc.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2035086
What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |EOL
https://bugzilla.redhat.com/show_bug.cgi?id=2035084 Bug 2035084 depends on bug 2035086, which changed state.
Bug 2035086 Summary: CVE-2021-45256 nasm: Null pointer dereference via asm/preproc.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2035086
What |Removed |Added ---------------------------------------------------------------------------- Status|CLOSED |NEW Resolution|EOL |---
https://bugzilla.redhat.com/show_bug.cgi?id=2035084 Bug 2035084 depends on bug 2035086, which changed state.
Bug 2035086 Summary: CVE-2021-45256 nasm: Null pointer dereference via asm/preproc.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2035086
What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution|--- |CURRENTRELEASE
java-sig-commits@lists.fedoraproject.org