Skip to main content

Nasm CVE-2026-6067

| EUVDEUVD-2026-21378 MEDIUM
Out-of-bounds Write (CWE-787)
2026-04-10 certcc GHSA-6h49-94j7-p577
5.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
SUSE
7.5 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Red Hat
7.3 HIGH
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

6
Severity Changed
Apr 23, 2026 - 18:42 NVD
HIGH MEDIUM
CVSS changed
Apr 23, 2026 - 18:42 NVD
7.5 (HIGH) 5.5 (MEDIUM)
Re-analysis Queued
Apr 16, 2026 - 19:52 vuln.today
cvss_changed
EUVD ID Assigned
Apr 10, 2026 - 13:45 euvd
EUVD-2026-21378
Analysis Generated
Apr 10, 2026 - 13:45 vuln.today
CVE Published
Apr 10, 2026 - 13:30 nvd
HIGH 7.5

DescriptionCVE.org

A heap buffer overflow vulnerability exists in the Netwide Assembler (NASM) due to a lack of bounds checking in the obj_directive() function. This vulnerability can be exploited by a user assembling a malicious .asm file, potentially leading to heap memory corruption, denial of service (crash), and arbitrary code execution.

AnalysisAI

Heap buffer overflow in Netwide Assembler (NASM) 3.02rc5 obj_directive() function enables arbitrary code execution and denial of service when processing maliciously crafted .asm files. Missing bounds validation allows attackers to corrupt heap memory through specially constructed assembly source files. Publicly available exploit code exists. Impacts NASM users assembling untrusted input files, particularly automated build systems and development environments processing external assembly code.

Technical ContextAI

Root cause: absent bounds checking in obj_directive() function during assembly file parsing. Heap overflow occurs when processing malformed directives in object file format handlers. CWE classification unavailable. Exploitation requires target to assemble attacker-controlled .asm file. CVSS vector indicates network-accessible attack surface (AV:N), though practical exploitation requires social engineering or supply chain positioning.

RemediationAI

No vendor-released patch identified at time of analysis. Upstream issue tracking active at https://github.com/netwide-assembler/nasm/issues/203 - monitor for official fix announcement. Immediate mitigations: (1) restrict NASM usage to trusted assembly source files only, (2) disable automated processing of external/user-submitted .asm files in build pipelines, (3) implement sandboxing for NASM execution contexts using containerization or VM isolation, (4) validate assembly file inputs through static analysis before assembly. Organizations using NASM 3.02rc5 in production should revert to stable release 3.01 pending security update. Subscribe to NASM project security advisories and apply patched version immediately upon release. Advisory reference: https://nvd.nist.gov/vuln/detail/CVE-2026-6067

Vendor StatusVendor

SUSE

Severity: High
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed
SUSE Linux Enterprise Module for Development Tools 15 SP7 Fixed
SUSE Linux Enterprise Server 15 SP7 Fixed
SUSE Linux Enterprise Server for SAP Applications 15 SP7 Fixed

Share

CVE-2026-6067 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy