CVE-2023-31975
LOWyasm v1.3.0 - Memory Leak in yasm_intnum_copy Function
Title source: llmDescription
yasm v1.3.0 was discovered to contain a memory leak via the function yasm_intnum_copy at /libyasm/intnum.c. Note: Multiple third parties dispute this as a bug and not a vulnerability according to the YASM security policy.
References (18)
Core 18
Core References
Exploit, Issue Tracking
https://github.com/yasm/yasm/issues/210
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/20/6
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/21/2
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/21/7
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/21/10
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/21/5
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/21/8
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/21/9
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/21/13
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/22/1
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/22/3
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/22/6
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/23/2
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/23/1
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/23/4
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/23/8
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/23/9
Mailing List, Third Party Advisory mailing-list
http://www.openwall.com/lists/oss-security/2023/06/24/1
Scores
CVSS v3
3.3
EPSS
0.0047
EPSS Percentile
36.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
partial
Details
CWE
CWE-401
Status
published
Products (1)
yasm_project/yasm
1.3.0
Published
May 09, 2023
Tracked Since
Feb 18, 2026