[Nasm-devel] NASM Flaw Analysis : CVE-2021-45256 and CVE-2021-45257 | Bugzilla Down

Tej Rathi trathi at redhat.com
Wed Jan 5 02:20:09 PST 2022

Previous message (by thread): [Nasm-devel] NASM Flaw Analysis : CVE-2021-45256 and CVE-2021-45257 | Bugzilla Down
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello,

I am performing an analysis of CVE-2021-45256 and CVE-2021-45257 on behalf
of Red Hat Product Security, and it seems like https://bugzilla.nasm.us/ is
down. Let us know when it's going to be up again or kindly revert back with
appropriate details regarding the given flaw or other references (if any).

We would appreciate your consideration and review.

*CVE-2021-45256:*
Flaw Summary: CVE-2021-45256 nasm: Null pointer dereference via
asm/preproc.c

*CVE-2021-45257:*
Flaw Summary: CVE-2021-45257 nasm: Infinite loop via the gpaste_tokens
function

References:

https://bugzilla.nasm.us/show_bug.cgi?id=3392789https://bugzilla.nasm.us/show_bug.cgi?id=3392790

Thank you for your time and consideration.

- Tej Rathi
Associate Product Security Engineer
<https://www.redhat.com/>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.nasm.us/archives/nasm-devel/attachments/20220105/ade34a6d/attachment.htm>

Previous message (by thread): [Nasm-devel] NASM Flaw Analysis : CVE-2021-45256 and CVE-2021-45257 | Bugzilla Down
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Nasm-devel mailing list