Netwide Assembler (nasm) through version 2.13 is vulnerable to a stack-based buffer over-read in the disasm/disasm.c:disasm() function. An attacker could exploit this to cause a crash or other unspecified impact via a crafted ELF file. Upstream Issue: https://sourceforge.net/p/nasm/bugs/561/
Created nasm tracking bugs for this issue: Affects: fedora-all [bug 1570497]
Upstream Bugzilla Bug: https://bugzilla.nasm.us/show_bug.cgi?id=3392475