2 matches found
CVE-2018-5392
mingw-w64 version 5.0.4 by default produces executables that opt in to ASLR, but are not compatible with ASLR. ASLR is an exploit mitigation technique used by modern Windows platforms. For ASLR to function, Windows executables must contain a relocations table. Despite containing the "Dynamic base...
CVE-2018-5392
CVE-2018-5392 affects mingw-w64 5.0.4 where executables claim ASLR compatibility but lack a relocations table, despite Dynamic Base headers. This mismatch means Windows binaries produced by mingw-w64 are not ASLR-compatible; the missing relocations table enables return-oriented programming (ROP) ...