NASM’s disasm() function contains a stack based buffer overflow when formatting disassembly output, allowing an attacker triggered out-of-bounds write when slen exceeds the buffer capacity.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/6xxx/CVE-2026-6069.json",
"cna_assigner": "certcc"
}{
"cpe": "cpe:2.3:a:nasm:netwide_assembler:3.02:rc5:*:*:*:*:*:*",
"source": [
"AFFECTED_FIELD",
"CPE_STRING"
],
"extracted_events": [
{
"introduced": "nasm-3.02rc5"
},
{
"last_affected": "nasm-3.02rc5"
},
{
"introduced": "3.02-rc5"
},
{
"last_affected": "3.02-rc5"
}
]
}