OESA-2025-1585

See a problem?
Please try reporting it to the source first.

Source

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2025-1585

Import Source

https://repo.openeuler.org/security/data/osv/OESA-2025-1585.json

JSON Data

https://api.osv.dev/v1/vulns/OESA-2025-1585

Upstream

CVE-2023-38665

Published

2025-06-06T14:03:23Z

Modified

2025-09-03T06:31:06.089818Z

Summary

nasm security update

Details

NASM is the Netwide Assembler, a free portable assembler for the Intel 80x86 microprocessor series, using primarily the traditional Intel instruction mnemonics and syntax. It also provides tools in RDOFF binary format, includes linker, library manager, loader, and information dump.

Security Fix(es):

Null pointer dereference in ieeewritefile in nasm 2.16rc0 allows attackers to cause a denial of service (crash).(CVE-2023-38665)

Database specific

{
    "severity": "Medium"
}

References

Affected packages

openEuler:22.03-LTS-SP3 / nasm

Package

Name: nasm
Purl: pkg:rpm/openEuler/nasm&distro=openEuler-22.03-LTS-SP3

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.15.05-7.oe2203sp3

Ecosystem specific

{
    "src": [
        "nasm-2.15.05-7.oe2203sp3.src.rpm"
    ],
    "noarch": [
        "nasm-help-2.15.05-7.oe2203sp3.noarch.rpm"
    ],
    "x86_64": [
        "nasm-2.15.05-7.oe2203sp3.x86_64.rpm",
        "nasm-debuginfo-2.15.05-7.oe2203sp3.x86_64.rpm",
        "nasm-debugsource-2.15.05-7.oe2203sp3.x86_64.rpm"
    ],
    "aarch64": [
        "nasm-2.15.05-7.oe2203sp3.aarch64.rpm",
        "nasm-debuginfo-2.15.05-7.oe2203sp3.aarch64.rpm",
        "nasm-debugsource-2.15.05-7.oe2203sp3.aarch64.rpm"
    ]
}

Database specific

source

"https://repo.openeuler.org/security/data/osv/OESA-2025-1585.json"