AI Score
Confidence
High
EPSS
Percentile
30.6%
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial
yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via the function parse_expr5 at /nasm/nasm-parse.c. Note: This has been disputed by third parties who argue this is a bug and not a security issue because yasm is a standalone program not designed to run untrusted code.
[
{
"cpes": [
"cpe:2.3:a:yasm_project:yasm:1.3.0.55.g101bc:*:*:*:*:*:*:*"
],
"vendor": "yasm_project",
"product": "yasm",
"versions": [
{
"status": "affected",
"version": "1.3.0.55.g101bc"
}
],
"defaultStatus": "unknown"
}
]