CVE-2023-29939

2023-05-0515:15:09

Debian Security Bug Tracker

security-tracker.debian.org

cve-2023-29939

llvm

segmentation fault

mlir::spirv::targetenv

unix

targetenvattr

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

12.7%

JSON

llvm-project commit a0138390 was discovered to contain a segmentation fault via the component mlir::spirv::TargetEnv::TargetEnv(mlir::spirv::TargetEnvAttr).

OSVersionArchitecturePackageVersionFilename
Debian12allllvm-toolchain-13<= 1:13.0.1-11llvm-toolchain-13_1:13.0.1-11_all.deb
Debian11allllvm-toolchain-13<= 1:13.0.1-6~deb11u1llvm-toolchain-13_1:13.0.1-6~deb11u1_all.deb
Debian12allllvm-toolchain-14<= 1:14.0.6-12llvm-toolchain-14_1:14.0.6-12_all.deb
Debian999allllvm-toolchain-14< 1:14.0.6-13llvm-toolchain-14_1:14.0.6-13_all.deb
Debian12allllvm-toolchain-15<= 1:15.0.6-4llvm-toolchain-15_1:15.0.6-4_all.deb
Debian999allllvm-toolchain-15< 1:15.0.7-7llvm-toolchain-15_1:15.0.7-7_all.deb
Debian13allllvm-toolchain-15< 1:15.0.7-7llvm-toolchain-15_1:15.0.7-7_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	llvm-toolchain-13	<= 1:13.0.1-11	llvm-toolchain-13_1:13.0.1-11_all.deb
Debian	11	all	llvm-toolchain-13	<= 1:13.0.1-6~deb11u1	llvm-toolchain-13_1:13.0.1-6~deb11u1_all.deb
Debian	12	all	llvm-toolchain-14	<= 1:14.0.6-12	llvm-toolchain-14_1:14.0.6-12_all.deb
Debian	999	all	llvm-toolchain-14	< 1:14.0.6-13	llvm-toolchain-14_1:14.0.6-13_all.deb
Debian	12	all	llvm-toolchain-15	<= 1:15.0.6-4	llvm-toolchain-15_1:15.0.6-4_all.deb
Debian	999	all	llvm-toolchain-15	< 1:15.0.7-7	llvm-toolchain-15_1:15.0.7-7_all.deb
Debian	13	all	llvm-toolchain-15	< 1:15.0.7-7	llvm-toolchain-15_1:15.0.7-7_all.deb