CVE-2008-2719
Published: 16 June 2008
Off-by-one error in the ppscan function (preproc.c) in Netwide Assembler (NASM) 2.02 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted file that triggers a stack-based buffer overflow.
Priority
Status
Package | Release | Status |
---|---|---|
nasm Launchpad, Ubuntu, Debian |
dapper |
Not vulnerable
(code not present)
|
feisty |
Not vulnerable
(code not present)
|
|
gutsy |
Not vulnerable
(code not present)
|
|
hardy |
Released
(0.99.06-2ubuntu0.1)
|
|
upstream |
Released
(2.03.01-1)
|
|
Patches: debdiff: http://launchpad.net/bugs/241421 |