tortall 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。
一般的な弱点パターンには vendor risk memory corruption and vendor risk denial of service があり、vendor surface production workloads and vendor surface software deployment の利用場面で vendor impact memory corruption and アプリケーションクラッシュ などのリスクが生じる可能性があります。
掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2023-51258 | A memory leak issue discovered in YASM v.1.3.0 allows a local attacker to cause a denial of service via the new_Token function in the modules/preprocs/nasm/nasm-pp:1512. | [email protected] | 5.5 | 0.05% | 2024-01-18 | 2024-11-21 |
| CVE-2023-31973 | yasm v1.3.0 was discovered to contain a use after free via the function expand_mmac_params at /nasm/nasm-pp.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy. | [email protected] | 5.5 | 0.14% | 2023-05-09 | 2024-11-21 |
| CVE-2023-31974 | yasm v1.3.0 was discovered to contain a use after free via the function error at /nasm/nasm-pp.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy. | [email protected] | 5.5 | 0.05% | 2023-05-09 | 2025-01-28 |
| CVE-2023-31972 | yasm v1.3.0 was discovered to contain a use after free via the function pp_getline at /nasm/nasm-pp.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy. | [email protected] | 5.5 | 0.05% | 2023-05-09 | 2025-01-29 |
| CVE-2021-33468 | An issue was discovered in yasm version 1.3.0. There is a use-after-free in error() in modules/preprocs/nasm/nasm-pp.c. | [email protected] | 5.5 | 0.14% | 2022-07-26 | 2024-11-21 |
| CVE-2021-33467 | An issue was discovered in yasm version 1.3.0. There is a use-after-free in pp_getline() in modules/preprocs/nasm/nasm-pp.c. | [email protected] | 5.5 | 0.14% | 2022-07-26 | 2024-11-21 |
| CVE-2021-33466 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in expand_smacro() in modules/preprocs/nasm/nasm-pp.c. | [email protected] | 5.5 | 0.14% | 2022-07-26 | 2024-11-21 |
| CVE-2021-33465 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in expand_mmacro() in modules/preprocs/nasm/nasm-pp.c. | [email protected] | 5.5 | 0.14% | 2022-07-26 | 2024-11-21 |
| CVE-2021-33464 | An issue was discovered in yasm version 1.3.0. There is a heap-buffer-overflow in inc_fopen() in modules/preprocs/nasm/nasm-pp.c. | [email protected] | 5.5 | 0.14% | 2022-07-26 | 2024-11-21 |
| CVE-2021-33463 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in yasm_expr__copy_except() in libyasm/expr.c. | [email protected] | 5.5 | 0.14% | 2022-07-26 | 2024-11-21 |
| CVE-2021-33462 | An issue was discovered in yasm version 1.3.0. There is a use-after-free in expr_traverse_nodes_post() in libyasm/expr.c. | [email protected] | 5.5 | 0.14% | 2022-07-26 | 2024-11-21 |
| CVE-2021-33461 | An issue was discovered in yasm version 1.3.0. There is a use-after-free in yasm_intnum_destroy() in libyasm/intnum.c. | [email protected] | 5.5 | 0.14% | 2022-07-26 | 2024-11-21 |
| CVE-2021-33460 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in if_condition() in modules/preprocs/nasm/nasm-pp.c. | [email protected] | 5.5 | 0.14% | 2022-07-26 | 2024-11-21 |
| CVE-2021-33459 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in nasm_parser_directive() in modules/parsers/nasm/nasm-parse.c. | [email protected] | 5.5 | 0.12% | 2022-07-26 | 2024-11-21 |
| CVE-2021-33458 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in find_cc() in modules/preprocs/nasm/nasm-pp.c. | [email protected] | 5.5 | 0.14% | 2022-07-26 | 2024-11-21 |
| CVE-2021-33457 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in expand_mmac_params() in modules/preprocs/nasm/nasm-pp.c. | [email protected] | 5.5 | 0.16% | 2022-07-26 | 2024-11-21 |
| CVE-2021-33456 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in hash() in modules/preprocs/nasm/nasm-pp.c. | [email protected] | 5.5 | 0.14% | 2022-07-26 | 2024-11-21 |
| CVE-2021-33455 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in do_directive() in modules/preprocs/nasm/nasm-pp.c. | [email protected] | 5.5 | 0.14% | 2022-07-26 | 2024-11-21 |
| CVE-2021-33454 | An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in yasm_expr_get_intnum() in libyasm/expr.c. | [email protected] | 5.5 | 0.05% | 2022-07-26 | 2024-11-21 |