An update for nasm is now available for openEuler-20.03-LTS-SP4 Security Advisory openeuler-security@openeuler.org openEuler security committee openEuler-SA-2025-1584 Final 1.0 1.0 2025-06-06 Initial 2025-06-06 2025-06-06 openEuler SA Tool V1.0 2025-06-06 nasm security update An update for nasm is now available for openEuler-20.03-LTS-SP4 NASM is the Netwide Assembler, a free portable assembler for the Intel 80x86 microprocessor series, using primarily the traditional Intel instruction mnemonics and syntax. It also provides tools in RDOFF binary format, includes linker, library manager, loader, and information dump. Security Fix(es): Null pointer dereference in ieee_write_file in nasm 2.16rc0 allows attackers to cause a denial of service (crash).(CVE-2023-38665) An update for nasm is now available for openEuler-20.03-LTS-SP4. openEuler Security has rated this update as having a security impact of medium. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section. Medium nasm https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1584 https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2023-38665 https://nvd.nist.gov/vuln/detail/CVE-2023-38665 openEuler-20.03-LTS-SP4 nasm-2.15.05-2.oe2003sp4.x86_64.rpm nasm-debuginfo-2.15.05-2.oe2003sp4.x86_64.rpm nasm-debugsource-2.15.05-2.oe2003sp4.x86_64.rpm nasm-help-2.15.05-2.oe2003sp4.noarch.rpm nasm-2.15.05-2.oe2003sp4.aarch64.rpm nasm-debuginfo-2.15.05-2.oe2003sp4.aarch64.rpm nasm-debugsource-2.15.05-2.oe2003sp4.aarch64.rpm nasm-2.15.05-2.oe2003sp4.src.rpm Null pointer dereference in ieee_write_file in nasm 2.16rc0 allows attackers to cause a denial of service (crash). 2025-06-06 CVE-2023-38665 openEuler-20.03-LTS-SP4 Medium 5.5 AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H nasm security update 2025-06-06 https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1584