Security update for nasm SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2017:2125-1 Final 1 1 2017-08-09T20:13:34Z current 2017-08-09T20:13:34Z 2017-08-09T20:13:34Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for nasm This update for nasm fixes the following issues: Security issues fixed: - CVE-2017-10686: Multiple heap use after free vulnerabilities. (bsc#1047936) - CVE-2017-11111: Heap-based buffer overflow and application crash. (bsc#1047925) This update was imported from the SUSE:SLE-12:Update update project. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-updates/2017-08/msg00030.html E-Mail link for openSUSE-SU-2017:2125-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.2 openSUSE Leap 42.3 nasm-2.10.09-10.1 nasm-doc-2.10.09-10.1 nasm-2.10.09-10.1 as a component of openSUSE Leap 42.2 nasm-doc-2.10.09-10.1 as a component of openSUSE Leap 42.2 nasm-2.10.09-10.1 as a component of openSUSE Leap 42.3 nasm-doc-2.10.09-10.1 as a component of openSUSE Leap 42.3 In Netwide Assembler (NASM) 2.14rc0, there are multiple heap use after free vulnerabilities in the tool nasm. The related heap is allocated in the token() function and freed in the detoken() function (called by pp_getline()) - it is used again at multiple positions later that could cause multiple damages. For example, it causes a corrupted double-linked list in detoken(), a double free or corruption in delete_Token(), and an out-of-bounds write in detoken(). It has a high possibility to lead to a remote code execution attack. CVE-2017-10686 openSUSE Leap 42.2:nasm-2.10.09-10.1 openSUSE Leap 42.2:nasm-doc-2.10.09-10.1 openSUSE Leap 42.3:nasm-2.10.09-10.1 openSUSE Leap 42.3:nasm-doc-2.10.09-10.1 moderate 5.4 AV:N/AC:H/Au:N/C:N/I:N/A:C Please Install the update. https://lists.opensuse.org/opensuse-updates/2017-08/msg00030.html https://www.suse.com/security/cve/CVE-2017-10686.html CVE-2017-10686 https://bugzilla.suse.com/1047936 SUSE Bug 1047936 In Netwide Assembler (NASM) 2.14rc0, preproc.c allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted file. CVE-2017-11111 openSUSE Leap 42.2:nasm-2.10.09-10.1 openSUSE Leap 42.2:nasm-doc-2.10.09-10.1 openSUSE Leap 42.3:nasm-2.10.09-10.1 openSUSE Leap 42.3:nasm-doc-2.10.09-10.1 low 2.6 AV:N/AC:H/Au:N/C:N/I:N/A:P Please Install the update. https://lists.opensuse.org/opensuse-updates/2017-08/msg00030.html https://www.suse.com/security/cve/CVE-2017-11111.html CVE-2017-11111 https://bugzilla.suse.com/1047925 SUSE Bug 1047925 https://bugzilla.suse.com/1073798 SUSE Bug 1073798