CVE-2026-6067

[nixpkgs-security-tracker]

• CVE-2026-6067
• Nixpkgs security tracker issue
• affected package maintainers: cc @pSub

Description

A heap buffer overflow vulnerability exists in the Netwide Assembler (NASM) due to a lack of bounds checking in the obj_directive() function. This vulnerability can be exploited by a user assembling a malicious .asm file, potentially leading to heap memory corruption, denial of service (crash), and arbitrary code execution.

References

• Heap buffer overflow (OOB write) in output/outobj.c obj_directive() via GROUP directive netwide-assembler/nasm#203

7.5 HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

• CVSS version: 3.1
• Attack Vector (AV): Network (N)
• Attack Complexity (AC): Low (L)
• Privileges Required (PR): None (N)
• User Interaction (UI): None (N)
• Scope (S): Unchanged (U)
• Confidentiality (C): None (N)
• Integrity (I): None (N)
• Availability (A): High (H)

Affected packages

• nasm (2.16.03@nixos-25.11, 3.01@nixos-unstable)