Vulnerabilities > CVE-2023-29579 - Out-of-bounds Write vulnerability in Yasm Project Yasm 1.3.0.55.G101Bc

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
yasm-project
CWE-787

Summary

yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via the component yasm/yasm+0x43b466 in vsprintf. Note: This has been disputed by third parties who argue this is a bug and not a security issue because yasm is a standalone program not designed to run untrusted code.

Vulnerable Configurations

Part Description Count
Application
Yasm_Project
1

Common Weakness Enumeration (CWE)