You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
yasm
About this tag
YASM is an open-source x86/x86-64 assembler used as a drop-in alternative to NASM in many build systems and developer toolchains. Discussions on WindowsForum highlight security vulnerabilities in YASM, including CVE-2023-51258, a memory leak in the NASM preprocessor's new_Token routine that can be exploited locally to exhaust memory, and CVE-2024-22653, a NULL-pointer dereference with supply-chain implications for Microsoft-maintained Linux images. The tag also covers YASM's role in assembly programming, such as in FFmpeg's hand-written SIMD code for high-performance media pipelines. Topics include patching strategies, build host updates, and the importance of validating upstream commits for security fixes.
A small, targeted memory leak in the YASM assembler has emerged as a quietly dangerous availability problem: CVE-2023-51258 identifies a leak in the new_Token routine of the NASM preprocessor module that can be triggered by local users and, when exploited repeatedly, can exhaust memory and deny...
A NULL-pointer dereference discovered in the Yasm assembler (tracked as CVE-2024-22653) is small in code but broad in consequence: the bug lived in a widely reused open-source component, was fixed in a targeted upstream commit, and — contrary to a narrow reading of a Microsoft FAQ — the presence...
FFmpeg’s new assembly lessons have turned a niche skill into a teachable path: a compact, practical curriculum aimed squarely at developers who want to write the kind of hand-optimized SIMD code that still powers the highest-performance media pipelines. The lessons, published as a public...
assembly
avx-512
avx2
checkasm
codec
cpu detection
ffmpeg
kernel optimization
nasm
neon
optimization
performance
simd
sse
system build
windows development
x86
yasm