CVE-2019-6291 — Uncontrolled Recursion in Netwide Assembler

CWE-674 — Uncontrolled Recursion CWE-400 — Uncontrolled Resource Consumption14 documents7 sources

Severity

5.5MEDIUMNVD

EPSS

0.4%

top 40.87%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nasm Netwide Assembler Debian Nasm Msrc Azl3 Tensorflow 2.16.1-9 ON Azure Linux 3.0 +1 more

Timeline

PublishedJan 15

Latest updateMay 24

Description

An issue was discovered in the function expr6 in eval.c in Netwide Assembler (NASM) through 2.14.02. There is a stack exhaustion problem caused by the expr6 function making recursive calls to itself in certain scenarios involving lots of '!' or '+' or '-' characters. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted asm file.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

▶NVDnasm/netwide_assembler2.14.02+1

▶debiandebian/nasm

▶msrcmsrc/azl3_tensorflow_2.16.1-9_on_azure_linux_3.0

▶msrcmsrc/cbl2_tensorflow_2.11.1-2_on_cbl_mariner_2.0

🔴Vulnerability Details

GHSA

GHSA-753j-4956-2r9q: In Netwide Assembler (NASM) 2↗2022-05-24

▶

GHSA

GHSA-mjrg-rf9g-9j6r: An issue was discovered in the function expr6 in eval↗2022-05-13

▶

OSV

CVE-2019-20334: In Netwide Assembler (NASM) 2↗2020-01-04

▶

OSV

CVE-2019-6291: An issue was discovered in the function expr6 in eval↗2019-01-15

▶

📋Vendor Advisories

Microsoft

In Netwide Assembler (NASM) 2.14.02, stack consumption occurs in expr# functions in asm/eval.c. This potentially affects the relationships among expr0, expr1, expr2, expr3, expr4, expr5, and expr6 (an↗2020-01-14

▶

Red Hat

nasm: stack consumption occurs in expr# functions in asm/eval.c↗2020-01-04

▶

Red Hat

nasm: Recursive calls in the function expr resulting in a denial of service↗2019-01-02

▶

Debian

CVE-2019-6291: nasm - An issue was discovered in the function expr6 in eval.c in Netwide Assembler (NA...↗2019

▶

Debian

CVE-2019-20334: nasm - In Netwide Assembler (NASM) 2.14.02, stack consumption occurs in expr# functions...↗2019

▶

💬Community

Bugzilla

CVE-2019-20334 nasm: stack consumption occurs in expr# functions in asm/eval.c↗2020-04-16

▶

Bugzilla

CVE-2019-6291 nasm: Recursive calls in the function expr resulting in a denial of service↗2019-01-22

▶

Bugzilla

CVE-2019-6291 nasm: Recursive calls in the function expr resulting in a denial of service [fedora-all]↗2019-01-22

▶