Bug#1119172: yasm: CVE-2021-33456

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#1119172: yasm: CVE-2021-33456
From: Syed Shahrukh Hussain <syed.shahrukh@ossrevival.org>
Date: Tue, 28 Oct 2025 02:31:20 +0500
Message-id: <[🔎] 176160068095.154387.9938031649858888324.reportbug@latitude-7420>
Reply-to: Syed Shahrukh Hussain <syed.shahrukh@ossrevival.org>, 1119172@bugs.debian.org

Source: yasm
Version: 1.3.0-7
Severity: important
Tags: security, upstream

Hi,

The following vulnerability was published for yasm.

An issue was discovered in yasm version 1.3.0. 

There is a NULL pointer dereference in hash() in
modules/preprocs/nasm/nasm-pp.c.

For further information see:

https://www.cve.org/CVERecord?id=CVE-2021-33456

https://github.com/yasm/yasm/issues/175

Reply to:

Follow-Ups:
- Bug#1119172: marked as done (yasm: CVE-2021-33456)
  - From: "Debian Bug Tracking System" <owner@bugs.debian.org>

Prev by Date: Processed: dovecot: Depends on db5.3
Next by Date: Processed: 389-ds-base: Depends on db5.3
Previous by thread: Processed: dovecot: Depends on db5.3
Next by thread: Bug#1119172: marked as done (yasm: CVE-2021-33456)
Index(es):
- Date
- Thread