Memory Leak Vulnerability in NASM by Netwide Assembler
CVE-2021-33452

5.5MEDIUM

Key Information:

Vendor: Nasm
Status: Netwide Assembler
Vendor: CVE Published:; 26 July 2022

What is CVE-2021-33452?

A memory leak vulnerability has been identified in NASM version 2.16rc0, specifically within the nasm_malloc() function located in nasmlib/alloc.c. This issue can lead to excessive memory consumption, potentially affecting the performance and stability of applications utilizing NASM. If left unaddressed, the memory leak may cause an increase in resource usage, which can result in degraded system performance.

References

https://bugzilla.nasm.us/show_bug.cgi?id=3392757

x_refsource_MISC

https://gist.github.com/Clingto/bb632c0c463f4b2c97e4f65f7...

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 26, 2022
Vulnerability Reserved
May 20, 2021

CVE-2021-33452 Data

JSON

Nasm

What is CVE-2021-33452?

References

CVSS V3.1

Timeline