Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
oraclelinuxOracleLinuxELSA-2023-12788
HistorySep 12, 2023 - 12:00 a.m.

gcc security update

2023-09-1200:00:00
linux.oracle.com
20
gcc security update
cve-2023-4039
cve-2022-40982
gcc versions
oracle
.spec file
security mitigation
intel downfall
oracle bug
patches
jose e. marchesi
unix

6.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.7%

JSON

gcc [el8]
[8.5.0-18.0.5]

  • CVE-2023-4039 GCC mitigation.
    Orabug 35751743.
    Includes removal of aarch64-preserve-args.patch.
  • CVE-2022-40982 ‘Intel Downfall’ mitigation.
    Orabug 35751810.
    Add two patches originally from GCC upstream releases/gcc-11 branch.
    with major adjustment.
    gcc11-downfall-disable-gather-in-vec.patch
    gcc11-downfall-support-mno-gather.patch
    Reviewed-by: Jose E. Marchesi
    gcc [el9]
    [11.3.1-4.3.0.4]
  • CVE-2023-4039 GCC mitigation.
    Orabug 35751837.
  • CVE-2022-40982 ‘Intel Downfall’ mitigation.
    Orabug 35751842.
    Add two patches originally from GCC upstream releases/gcc-11 branch.
    gcc11-downfall-disable-gather-in-vec.patch
    gcc11-downfall-support-mno-gather.patch
    Reviewed-by: Jose E. Marchesi
    gcc-toolset-11-gcc [el8]
    [11.2.1-9.1.0.6]
  • CVE-2023-4039 GCC mitigation.
    Orabug 35751885.
  • CVE-2022-40982 ‘Intel Downfall’ mitigation.
    Orabug 35751901.
    Add two patches originally from GCC upstream releases/gcc-11 branch.
    gcc11-downfall-disable-gather-in-vec.patch
    gcc11-downfall-support-mno-gather.patch
    Reviewed-by: Jose E. Marchesi
    gcc-toolset-12-gcc [el8/el9]
    [12.2.1-7.4.0.2]
  • CVE-2023-4039 GCC mitigation.
    Orabug 35751931.
  • CVE-2022-40982 ‘Intel Downfall’ mitigation.
    Orabug 35751938.
    Add two patches originally from GCC upstream releases/gcc-11 branch.
    gcc12-downfall-disable-gather-in-vec.patch
    gcc12-downfall-support-mno-gather.patch
  • Introduce ‘oracle_release’ into .spec file. Echo it to gcc/DEV-PHASE.
OSVersionArchitecturePackageVersionFilename
oracle linux8srcgcc< 8.5.0-18.0.5.el8gcc-8.5.0-18.0.5.el8.src.rpm
oracle linux8srcgcc< 8.5.0-18.0.5.el8gcc-8.5.0-18.0.5.el8.src.rpm
oracle linux8srcgcc< 8.5.0-18.0.5.el8gcc-8.5.0-18.0.5.el8.src.rpm
oracle linux8srcgcc< 8.5.0-18.0.5.el8gcc-8.5.0-18.0.5.el8.src.rpm
oracle linux8srcgcc-toolset-11-gcc< 11.2.1-9.1.0.6.el8gcc-toolset-11-gcc-11.2.1-9.1.0.6.el8.src.rpm
oracle linux8srcgcc-toolset-12-gcc< 12.2.1-7.4.0.2.el8gcc-toolset-12-gcc-12.2.1-7.4.0.2.el8.src.rpm
oracle linux8aarch64cpp< 8.5.0-18.0.5.el8cpp-8.5.0-18.0.5.el8.aarch64.rpm
oracle linux8aarch64gcc< 8.5.0-18.0.5.el8gcc-8.5.0-18.0.5.el8.aarch64.rpm
oracle linux8aarch64gcc-c++< 8.5.0-18.0.5.el8gcc-c++-8.5.0-18.0.5.el8.aarch64.rpm
oracle linux8aarch64gcc-gdb-plugin< 8.5.0-18.0.5.el8gcc-gdb-plugin-8.5.0-18.0.5.el8.aarch64.rpm
Rows per page:
1-10 of 3411

Related

nessus 64
ubuntucve 2
redhatcve 2
oraclelinux 8
openvas 56
prion 2
debiancve 2
alpinelinux 2
cbl_mariner 1
cve 2
amazon 3
veracode 2
nvd 2
cgr 1
wolfi 1
rosalinux 1
cvelist 2
debian 5
talosblog 1
xen 1
osv 13
ics 1
f5 1
cloudlinux 1
redhat 1
chrome 1
fedora 4
rocky 2
citrix 1
thn 1
cloudfoundry 1
ubuntu 7
ibm 1
trellix 2
mageia 2
nessus
nessus
Oracle Linux 8 / 9 : gcc (ELSA-2023-12788)
2023-09-12 00:00:00
EulerOS 2.0 SP10 : gcc (EulerOS-SA-2023-3209)
2024-01-16 00:00:00
SUSE SLED15 / SLES15 Security Update : gcc7 (SUSE-SU-2023:3686-1)
2023-09-20 00:00:00
ubuntucve
ubuntucve
CVE-2023-4039
2023-09-12 00:00:00
CVE-2022-40982
2023-08-08 00:00:00
redhatcve
redhatcve
CVE-2023-4039
2023-09-13 05:24:13
CVE-2022-40982
2023-08-08 17:20:33
oraclelinux
oraclelinux
cross-gcc security update
2023-09-12 00:00:00
cross-gcc security update
2023-09-12 00:00:00
microcode_ctl security update
2023-08-15 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:4458-1)
2023-11-17 00:00:00
Huawei EulerOS: Security Advisory for gcc (EulerOS-SA-2023-3209)
2023-11-10 00:00:00
Huawei EulerOS: Security Advisory for gcc (EulerOS-SA-2023-3296)
2023-12-12 00:00:00
prion
prion
Design/Logic Flaw
2023-09-13 09:15:00
Information disclosure
2023-08-11 03:15:00
debiancve
debiancve
CVE-2023-4039
2023-09-13 09:15:15
CVE-2022-40982
2023-08-11 03:15:14
alpinelinux
alpinelinux
CVE-2023-4039
2023-09-13 09:15:15
CVE-2022-40982
2023-08-11 03:15:14
cbl_mariner
cbl_mariner
CVE-2023-4039 affecting package gcc for versions less than 11.2.0-6
2023-09-27 18:02:50
cve
cve
CVE-2023-4039
2023-09-13 09:15:15
CVE-2022-40982
2023-08-11 03:15:14
amazon
amazon
Medium: gcc
2023-09-08 19:46:00
Medium: gcc10
2023-09-08 19:46:00
Medium: microcode_ctl
2023-08-03 18:10:00
veracode
veracode
Buffer Overflow
2023-11-30 18:34:15
Information Disclosure
2023-08-10 23:12:56
nvd
nvd
CVE-2023-4039
2023-09-13 09:15:15
CVE-2022-40982
2023-08-11 03:15:14
cgr
cgr
CVE-2023-4039 vulnerabilities
2024-05-19 03:07:16
wolfi
wolfi
CVE-2023-4039 vulnerabilities
2024-06-26 09:08:30
rosalinux
rosalinux
Advisory ROSA-SA-2024-2406
2024-04-23 12:04:19
cvelist
cvelist
CVE-2023-4039 GCC's-fstack-protector fails to guard dynamically-sized local variables on AArch64
2023-09-13 08:05:10
CVE-2022-40982
2023-08-11 02:37:05
debian
debian
[SECURITY] [DLA 3524-1] linux security update
2023-08-10 19:41:46
[SECURITY] [DSA 5475-1] linux security update
2023-08-11 07:57:07
[SECURITY] [DLA 3525-1] linux-5.10 security update
2023-08-11 17:21:05
talosblog
talosblog
Recapping the top stories from Black Hat and DEF CON
2023-08-17 18:00:32
xen
xen
x86/Intel: Gather Data Sampling
2023-08-08 15:53:00
osv
osv
linux - security update
2023-08-10 00:00:00
CVE-2022-40982
2023-08-11 03:15:14
linux-5.10 - security update
2023-08-10 00:00:00
ics
ics
Siemens SIMATIC IPCs
2023-09-14 12:00:00
f5
f5
K000135795: Downfall Attacks CVE-2022-40982
2023-08-09 00:00:00
cloudlinux
cloudlinux
microcode_ctl: Fix of CVE-2022-40982
2023-08-30 17:12:48
redhat
redhat
(RHSA-2024:3319) Important: kernel security update
2024-05-23 07:23:18
chrome
chrome
Stable Channel Update for ChromeOS / ChromeOS Flex
2023-08-01 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: xen-4.17.2-1.fc38
2023-08-16 01:22:32
[SECURITY] Fedora 37 Update: xen-4.16.5-1.fc37
2023-08-27 00:50:59
[SECURITY] Fedora 38 Update: microcode_ctl-2.1-55.1.fc38
2023-08-16 01:22:33
rocky
rocky
microcode_ctl bug fix and enhancement update
2023-09-19 12:10:01
microcode_ctl bug fix and enhancement update
2023-09-19 12:08:46
citrix
citrix
Citrix Hypervisor Security Bulletin for CVE-2023-20569, CVE-2023-34319 and CVE-2022-40982
2023-08-08 17:07:04
thn
thn
iLeakage: New Safari Exploit Impacts Apple iPhones and Macs with A- and M-Series CPUs
2023-10-26 16:49:00
cloudfoundry
cloudfoundry
USN-6286-1: Intel Microcode vulnerabilities | Cloud Foundry
2023-10-05 00:00:00
ubuntu
ubuntu
Intel Microcode vulnerabilities
2023-08-14 00:00:00
Linux kernel (Raspberry Pi) vulnerabilities
2023-09-06 00:00:00
Linux kernel vulnerabilities
2023-08-31 00:00:00
ibm
ibm
Security Bulletin: IBM Cognos Dashboards on Cloud Pak for Data 4.8.1 has addressed security vulnerabilities
2023-12-26 21:30:04
trellix
trellix
The Bug Report – August 2023 Edition
2023-09-06 00:00:00
The Bug Report – August 2023 Edition
2023-09-06 00:00:00
mageia
mageia
Updated microcode packages fix security vulnerabilities
2023-08-23 22:56:41
Updated kernel packages fix security vulnerabilities
2023-08-23 22:56:41

6.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.7%

JSON
Related for ELSA-2023-12788
nessus64ubuntucve2redhatcve2oraclelinux8openvas56prion2debiancve2alpinelinux2cbl_mariner1cve2amazon3veracode2nvd2cgr1wolfi1rosalinux1cvelist2debian5talosblog1xen1osv13ics1f51cloudlinux1redhat1chrome1fedora4rocky2citrix1thn1cloudfoundry1ubuntu7ibm1trellix2mageia2