Security
Security
Multiple vulnerabilities have been found in NASM, the worst of which could result in the remote execution of arbitrary code.
| Package | dev-lang/nasm on all architectures |
|---|---|
| Affected versions | < 2.14.02 |
| Unaffected versions | >= 2.14.02 |
NASM is a 80x86 assembler that has been created for portability and modularity. NASM supports Pentium, P6, SSE MMX, and 3DNow extensions. It also supports a wide range of objects formats (ELF, a.out, COFF, etc), and has its own disassembler.
Multiple vulnerabilities have been discovered in NASM. Please review the CVE identifiers referenced below for details.
A remote attacker could cause a Denial of Service condition or execute arbitrary code.
There is no known workaround at this time.
All NASM users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=dev-lang/nasm-2.14.02"