nasm version 2.14.01rc5, 2.15 contains a Buffer Overflow vulnerability in asm/stdscan.c:130 that can result in Stack-overflow caused by triggering endless macro generation, crash the program. This attack appear to be exploitable via a crafted nasm input file.
{
"source": "CPE_STRING",
"cpe": [
"cpe:2.3:a:nasm:netwide_assembler:2.14.01rc5:*:*:*:*:*:*:*",
"cpe:2.3:a:nasm:netwide_assembler:2.15:*:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "2.14.01rc5"
},
{
"last_affected": "2.14.01rc5"
},
{
"introduced": "2.15"
},
{
"last_affected": "2.15"
}
]
}