Oval Definition:oval:com.redhat.rhsa:def:20050381
Revision Date:2005-05-04Version:502
Title:RHSA-2005:381: nasm security update (Low)
Description:NASM is an 80x86 assembler.

Two stack based buffer overflow bugs have been found in nasm. An attacker could create an ASM file in such a way that when compiled by a victim, could execute arbitrary code on their machine. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CAN-2004-1287 and CAN-2005-1194 to these issues.

All users of nasm are advised to upgrade to this updated package, which contains backported fixes for these issues.
Family:unixClass:patch
Status:Reference(s):CVE-2004-1287
CVE-2005-1194
RHSA-2005:381-01
Platform(s):Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 4
Product(s):
Definition Synopsis
  • Release Information
  • Red Hat Enterprise Linux 3 is installed
  • AND
  • nasm-doc is earlier than 0:0.98.35-3.EL3
  • AND nasm-doc is signed with Red Hat master key
  • nasm is earlier than 0:0.98.35-3.EL3
  • AND nasm is signed with Red Hat master key
  • nasm-rdoff is earlier than 0:0.98.35-3.EL3
  • AND nasm-rdoff is signed with Red Hat master key
  • OR Package Information
  • Red Hat Enterprise Linux 4 is installed
  • AND
  • nasm-doc is earlier than 0:0.98.38-3.EL4
  • AND nasm-doc is signed with Red Hat master key
  • nasm is earlier than 0:0.98.38-3.EL4
  • AND nasm is signed with Red Hat master key
  • nasm-rdoff is earlier than 0:0.98.38-3.EL4
  • AND nasm-rdoff is signed with Red Hat master key
    • BACK