MEDIUM
Nasm
CVE published 2026-04-10
CVE-2026-6068
CVE-2026-6068 is a medium-severity memory-safety flaw in NASM’s response file (-@) handling. The issue occurs when a dangling pointer to freed memory is stored in the global depend_file and later dereferenced after the response-file buffer has already been freed. In practical terms, that can lead to data corruption and, depending on how the assembler is used, may create a remote code execution risk. The C [truncated]