CVE-2018-1000667 : NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains a memory

NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains a memory corruption (crashed) of nasm when handling a crafted file due to function assemble_file(inname, depend_ptr) at asm/nasm.c:482. vulnerability in function assemble_file(inname, depend_ptr) at asm/nasm.c:482. that can result in aborting/crash nasm program. This attack appear to be exploitable via a specially crafted asm file..

Published 2018-09-06 17:29:02

Updated 2020-07-13 21:15:12

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowMemory Corruption

Products affected by CVE-2018-1000667

Nasm » Netwide Assembler
Versions up to, including, (<=) 2.14.0
cpe:2.3:a:nasm:netwide_assembler:*:*:*:*:*:*:*:*
Matching versions
Nasm » Netwide Assembler » Version: 2.14.0 Update RC2
cpe:2.3:a:nasm:netwide_assembler:2.14.0:rc2:*:*:*:*:*:*
Matching versions
Nasm » Netwide Assembler » Version: 2.14.0 Update RC3
cpe:2.3:a:nasm:netwide_assembler:2.14.0:rc3:*:*:*:*:*:*
Matching versions
Nasm » Netwide Assembler » Version: 2.14.0 Update RC4
cpe:2.3:a:nasm:netwide_assembler:2.14.0:rc4:*:*:*:*:*:*
Matching versions
Nasm » Netwide Assembler » Version: 2.14.0 Update RC5
cpe:2.3:a:nasm:netwide_assembler:2.14.0:rc5:*:*:*:*:*:*
Matching versions
Nasm » Netwide Assembler » Version: 2.14.0 Update Rc10
cpe:2.3:a:nasm:netwide_assembler:2.14.0:rc10:*:*:*:*:*:*
Matching versions
Nasm » Netwide Assembler » Version: 2.14.0 Update Rc11
cpe:2.3:a:nasm:netwide_assembler:2.14.0:rc11:*:*:*:*:*:*
Matching versions
Nasm » Netwide Assembler » Version: 2.14.0 Update Rc12
cpe:2.3:a:nasm:netwide_assembler:2.14.0:rc12:*:*:*:*:*:*
Matching versions
Nasm » Netwide Assembler » Version: 2.14.0 Update Rc13
cpe:2.3:a:nasm:netwide_assembler:2.14.0:rc13:*:*:*:*:*:*
Matching versions
Nasm » Netwide Assembler » Version: 2.14.0 Update RC7
cpe:2.3:a:nasm:netwide_assembler:2.14.0:rc7:*:*:*:*:*:*
Matching versions
Nasm » Netwide Assembler » Version: 2.14.0 Update RC9
cpe:2.3:a:nasm:netwide_assembler:2.14.0:rc9:*:*:*:*:*:*
Matching versions
Nasm » Netwide Assembler » Version: 2.14.0 Update Rc14
cpe:2.3:a:nasm:netwide_assembler:2.14.0:rc14:*:*:*:*:*:*
Matching versions
Nasm » Netwide Assembler » Version: 2.14.0 Update RC1
cpe:2.3:a:nasm:netwide_assembler:2.14.0:rc1:*:*:*:*:*:*
Matching versions
Nasm » Netwide Assembler » Version: 2.14.0 Update RC6
cpe:2.3:a:nasm:netwide_assembler:2.14.0:rc6:*:*:*:*:*:*
Matching versions
Nasm » Netwide Assembler » Version: 2.14.0 Update RC8
cpe:2.3:a:nasm:netwide_assembler:2.14.0:rc8:*:*:*:*:*:*
Matching versions
Nasm » Netwide Assembler » Version: 2.14.0 Update Rc15
cpe:2.3:a:nasm:netwide_assembler:2.14.0:rc15:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2018-1000667

EPSS FAQ

0.22%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 42 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2018-1000667

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:N/A:P	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial
5.5	MEDIUM	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H	1.8	3.6	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2018-1000667

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2018-1000667

https://bugzilla.nasm.us/show_bug.cgi?id=3392507

3392507 – memory corruption of nasm when handling a crafed file due to function assemble_file(inname, depend_ptr) at asm/nasm.c:482
Exploit;Issue Tracking;Third Party Advisory
https://github.com/cyrillos/nasm/issues/3

Page not found · GitHub · GitHub
Exploit;Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00015.html

[security-announce] openSUSE-SU-2020:0954-1: moderate: Security update f

CVEs referencing this url
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00017.html

[security-announce] openSUSE-SU-2020:0952-1: moderate: Security update f

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2018-1000667

Products affected by CVE-2018-1000667

Exploit prediction scoring system (EPSS) score for CVE-2018-1000667

CVSS scores for CVE-2018-1000667

CWE ids for CVE-2018-1000667

References for CVE-2018-1000667