CVE-2023-23109

In crasm 1.8-3, invalid input validation, specific files passed to the command line application, can lead to a divide by zero fault in the function opdiv.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
mitreCNA
---
---
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 21%
VendorProductVersion
crasm_projectcrasm
𝑥
< 1.11
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
crasm
sid
unimportant
trixie
unimportant
bookworm
unimportant
bullseye
unimportant
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
crasm
oracular
needed
noble
needed
mantic
ignored
lunar
ignored
kinetic
ignored
jammy
needed
focal
needed
bionic
needed
xenial
needed
trusty
ignored
Common Weakness Enumeration
References
https://github.com/WhatTheFuzz/crasm-fuzz/tree/a020ad6ad99a72ca373f7dd1aab3a61a7c87fd66/bug-floating-point-exception
https://github.com/colinbourassa/crasm/pull/7
https://github.com/WhatTheFuzz/crasm-fuzz/tree/a020ad6ad99a72ca373f7dd1aab3a61a7c87fd66/bug-floating-point-exception
https://github.com/colinbourassa/crasm/pull/7