1214520 – (CVE-2020-21528) VUL-0: CVE-2020-21528: nasm: Segmentation Fault in in ieee_segment function in outieee.c

Bug 1214520 (CVE-2020-21528) - VUL-0: CVE-2020-21528: nasm: Segmentation Fault in in ieee_segment function in outieee.c

Summary: VUL-0: CVE-2020-21528: nasm: Segmentation Fault in in ieee_segment function i...

Status:	RESOLVED WONTFIX

Alias:	CVE-2020-21528

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	Incidents (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P3 - Medium Severity: Minor
Target Milestone:	---
Assignee:	Security Team bot
QA Contact:	Security Team bot

URL:	https://smash.suse.de/issue/375964/
Whiteboard:	CVSSv3.1:SUSE:CVE-2020-21528:3.3:(AV:...
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2023-08-23 09:25 UTC by Alexander Bergmann
Modified:	2024-04-19 08:58 UTC (History)
CC List:	5 users (show)

See Also:
Found By:	Security Response Team
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Reproducer (1.97 KB, text/x-asm) 2023-08-23 09:25 UTC, Alexander Bergmann	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Alexander Bergmann 2023-08-23 09:25:10 UTC

CVE-2020-21528

A Segmentation Fault issue discovered in in ieee_segment function in outieee.c
in nasm 2.14.03 and 2.15 allows remote attackers to cause a denial of service
via crafted assembly file.

References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2020-21528
https://www.cve.org/CVERecord?id=CVE-2020-21528
https://bugzilla.nasm.us/show_bug.cgi?id=3392637

Comment 1 Alexander Bergmann 2023-08-23 09:25:43 UTC

Created attachment 868964 [details]
Reproducer

# nasm -f ieee -o /dev/null test.asm 
Segmentation fault (core dumped)

Comment 2 Alexander Bergmann 2023-08-23 09:26:51 UTC

Upstream fix:
https://github.com/netwide-assembler/nasm/commit/93c774d482694643cafbc82578ac8b729fb5bc8b

Comment 3 Alexander Bergmann 2023-08-23 09:27:43 UTC

Note: Do not trust data from unknown sources. Do not assemble/disassemble binaries from unknown sources without a sandbox environment that protects you from possible attacks.

In general: This is not a severe issue. It can only exploited if general security measurements and best practices are not followed.

Comment 5 Michael Vetter 2023-09-20 08:07:18 UTC

Please see https://bugzilla.suse.com/show_bug.cgi?id=1214499#c4

Comment 6 Carlos López 2024-04-19 08:58:45 UTC

Closing as WONTFIX as discussed above.