In Netwide Assembler (NASM) 2.14rc0, there is a heap-based buffer over-read that will cause a remote denial of service attack, related to a while loop in paste_tokens in asm/preproc.c.
{
"unresolved_ranges": [
{
"vendor_product": "canonical:ubuntu_linux",
"cpes": [
"cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*"
],
"extracted_events": [
{
"introduced": "14.04"
},
{
"last_affected": "14.04"
}
],
"source": "CPE_STRING"
}
]
}