suse · CVE-2023-49554

Quick triage

Priority: medium Published: 2024-01-04 00:09:29 UTC Updated: 2025-02-16 02:01:36 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2023-49554 severity moderate: SUSE including 2 source package names (yasm, yasm-devel), 43 product×package rows across 22 product lines (SUSE CaaS Platform 4.0, SUSE Enterprise Storage 7.1, … (22 product lines)): Will Not Fix 43.

Description:

Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the do_directive function in the modules/preprocs/nasm/nasm-pp.c component.

cvelogic Threat Intelligence