In crasm 1.8-3, invalid input validation, specific files passed to the command line application, can lead to a divide by zero fault in the function opdiv.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors Products
Crasm Project
  • Crasm

Configuration 1 [-]

cpe:2.3:a:crasm_project:crasm:*:*:*:*:*:*:*:*
References
Link Resource
https://github.com/WhatTheFuzz/crasm-fuzz/tree/a020ad6ad99a72ca373f7dd1aab3a61a7c87fd66/bug-floating-point-exception Third Party Advisory
https://github.com/colinbourassa/crasm/pull/7 Patch Third Party Advisory
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2023-02-27T00:00:00

Updated: 2023-02-27T00:00:00

Reserved: 2023-01-11T00:00:00

Link: CVE-2023-23109

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2023-02-27T14:15:10.727

Modified: 2023-05-18T18:03:59.573

Link: CVE-2023-23109

JSON object: View

cve-icon Redhat Information

No data.

CWE