Description
An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasm_intnum_destroy() in libyasm/intnum.c.
References
https://gist.github.com/Clingto/bb632c0c463f4b2c97e4f65f751c5e6d
Third Party Advisory
https://github.com/yasm/yasm/issues/161
ExploitIssue TrackingThird Party Advisory
https://gist.github.com/Clingto/bb632c0c463f4b2c97e4f65f751c5e6d
Third Party Advisory
https://github.com/yasm/yasm/issues/161
ExploitIssue TrackingThird Party Advisory
CVSS impact metrics
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
5.5 · Medium
Information
Source identifier
Vulnerability status
Modified
Published
2022-07-26T11:15:09.590Z
3 years agoLast modified
2024-11-21T05:08:52.607Z
1 year ago