Amazon Linux 1 Security Advisory: ALAS-2023-1737
Advisory Release Date: 2023-04-27 16:19 Pacific
Advisory Updated Date: 2023-05-03 18:49 Pacific
NASM v2.16 was discovered to contain a heap buffer overflow in the component quote_for_pmake() asm/nasm.c:856 (CVE-2022-44370)
Affected Packages:
nasm
Issue Correction:
Run yum update nasm to update your system.
i686:
nasm-rdoff-2.10.07-7.8.amzn1.i686
nasm-2.10.07-7.8.amzn1.i686
nasm-debuginfo-2.10.07-7.8.amzn1.i686
noarch:
nasm-doc-2.10.07-7.8.amzn1.noarch
src:
nasm-2.10.07-7.8.amzn1.src
x86_64:
nasm-rdoff-2.10.07-7.8.amzn1.x86_64
nasm-2.10.07-7.8.amzn1.x86_64
nasm-debuginfo-2.10.07-7.8.amzn1.x86_64