Upstream information
Description
NASM contains a heap use after free vulnerability in response file (-@) processing where a dangling pointer to freed memory is stored in the global depend_file and later dereferenced, as the response-file buffer is freed before the pointer is used, allowing for data corruption or unexpected behavior.SUSE information
Overall state of this security issue: Does not affect SUSE products
SUSE Bugzilla entry: 1261985 [NEW] No SUSE Security Announcements cross referenced.SUSE Timeline for this CVE
CVE page created: Fri Apr 10 18:00:19 2026CVE page last modified: Fri May 8 11:29:19 2026