Launchpad CVE tracker

CVE 2008-2719

Off-by-one error in the ppscan function (preproc.c) in Netwide Assembler (NASM) 2.02 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted file that triggers a stack-based buffer overflow.

Related bugs and status

CVE-2008-2719 (Candidate) is related to these bugs:

Bug #241421: [CVE-2008-2719] nasm vulnerability (DoS and possible arbitrary code execution)

		In	Importance	Status
241421	[CVE-2008-2719] nasm vulnerability (DoS and possible arbitrary code execution)	nasm (Ubuntu)	Undecided	Fix Released
241421	[CVE-2008-2719] nasm vulnerability (DoS and possible arbitrary code execution)	nasm (Debian)	Unknown	Fix Released
241421	[CVE-2008-2719] nasm vulnerability (DoS and possible arbitrary code execution)	nasm (Ubuntu Dapper)	Undecided	Invalid
241421	[CVE-2008-2719] nasm vulnerability (DoS and possible arbitrary code execution)	nasm (Ubuntu Feisty)	Undecided	Invalid
241421	[CVE-2008-2719] nasm vulnerability (DoS and possible arbitrary code execution)	nasm (Ubuntu Intrepid)	Undecided	Fix Released
241421	[CVE-2008-2719] nasm vulnerability (DoS and possible arbitrary code execution)	nasm (Ubuntu Hardy)	Low	Fix Released
241421	[CVE-2008-2719] nasm vulnerability (DoS and possible arbitrary code execution)	nasm (Ubuntu Gutsy)	Undecided	Invalid

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2008-2719

References