CVE-2022-46456

Summary

CVE	CVE-2022-46456
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-01-04 18:15:00 UTC
Updated	2023-01-18 16:37:00 UTC
Description	NASM v2.16 was discovered to contain a global buffer overflow in the component dbgdbg_typevalue at /output/outdbg.c.

Risk And Classification

Problem Types: CWE-120

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Nasm	Netwide Assembler	2.16	-	All	All
Application	Nasm	Netwide Assembler	2.16	rc10	All	All
Application	Nasm	Netwide Assembler	2.16	rc11	All	All
Application	Nasm	Netwide Assembler	2.16	rc12	All	All
Application	Nasm	Netwide Assembler	2.16	rc4	All	All
Application	Nasm	Netwide Assembler	2.16	rc5	All	All
Application	Nasm	Netwide Assembler	2.16	rc6	All	All
Application	Nasm	Netwide Assembler	2.16	rc7	All	All
Application	Nasm	Netwide Assembler	2.16	rc8	All	All
Application	Nasm	Netwide Assembler	2.16	rc9	All	All
Application	Nasm	Netwide Assembler	2.16.01	All	All	All

References

Reference	Source	Link	Tags
3392814 – global-buffer-overflow output/outdbg.c:459 in dbgdbg_typevalue	MISC	bugzilla.nasm.us
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

904964 Common Base Linux Mariner (CBL-Mariner) Security Update for nasm (12387)
905028 Common Base Linux Mariner (CBL-Mariner) Security Update for nasm (12574)
905201 Common Base Linux Mariner (CBL-Mariner) Security Update for nasm (12911)
905235 Common Base Linux Mariner (CBL-Mariner) Security Update for nasm (12935)