Nasm Netwide Assember vulnerabilities

CVE-2025-8842 [MEDIUM] CWE-119 CVE-2025-8842: A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected by this issue is the funct A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected by this issue is the function do_directive of the file preproc.c. The manipulation leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public and may be used.

CVE-2025-8845 [MEDIUM] CWE-119 CVE-2025-8845: A vulnerability was identified in NASM Netwide Assember 2.17rc0. This issue affects the function ass A vulnerability was identified in NASM Netwide Assember 2.17rc0. This issue affects the function assemble_file of the file nasm.c. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used.

CVE-2025-8844 [MEDIUM] CWE-404 CVE-2025-8844: A vulnerability was determined in NASM Netwide Assember 2.17rc0. This vulnerability affects the func A vulnerability was determined in NASM Netwide Assember 2.17rc0. This vulnerability affects the function parse_smacro_template of the file preproc.c. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.

CVE-2025-8846 [MEDIUM] CWE-119 CVE-2025-8846: A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected is the function parse_line A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected is the function parse_line of the file parser.c. The manipulation leads to stack-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.

CVE-2025-8843 [MEDIUM] CWE-119 CVE-2025-8843: A vulnerability was found in NASM Netwide Assember 2.17rc0. This affects the function macho_no_dead_ A vulnerability was found in NASM Netwide Assember 2.17rc0. This affects the function macho_no_dead_strip of the file outmacho.c. The manipulation leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.