Upstream information
Description
A heap buffer overflow vulnerability exists in the Netwide Assembler (NASM) due to a lack of bounds checking in the obj_directive() function. This vulnerability can be exploited by a user assembling a malicious .asm file, potentially leading to heap memory corruption, denial of service (crash), and arbitrary code execution.SUSE information
Overall state of this security issue: Does not affect SUSE products
SUSE Bugzilla entry: 1261986 [NEW] No SUSE Security Announcements cross referenced.SUSE Timeline for this CVE
CVE page created: Fri Apr 10 18:00:19 2026CVE page last modified: Fri May 8 11:29:18 2026