Lucene search
K

173 matches found

OSV
OSV
added 2019/09/02 11:15 p.m.0 views

DEBIAN-CVE-2019-15847

The POWER9 backend in GNU Compiler Collection GCC before version 10 could optimize multiple calls of the builtindarn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For example, within a single...

7.5CVSS7.7AI score0.03207EPSS
Exploits0References1
OSV
OSV
added 2019/09/02 11:15 p.m.2 views

ALPINE-CVE-2019-15847

The POWER9 backend in GNU Compiler Collection GCC before version 10 could optimize multiple calls of the builtindarn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For example, within a single...

7.5CVSS7AI score0.03207EPSS
Exploits0References1
OSV
OSV
added 2019/09/02 11:15 p.m.2 views

UBUNTU-CVE-2019-15847

The POWER9 backend in GNU Compiler Collection GCC before version 10 could optimize multiple calls of the builtindarn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For example, within a single...

7.5CVSS7.4AI score0.03207EPSS
Exploits0References4
CVE
CVE
added 2019/09/02 10:3 p.m.315 views

CVE-2019-15847

CVE-2019-15847 affects the POWER9 backend of GCC, where the compiler could coalesce multiple __builtin_darn() calls into one due to an unspecified volatile operation, reducing random-number entropy. The GCC GLSA/Advisory notes that this issue stems from flawed code generation and can cause repeat...

7.5CVSS7.1AI score0.03207EPSS
Exploits0References4Affected Software1
AlpineLinux
AlpineLinux
added 2019/09/02 10:3 p.m.22 views

CVE-2019-15847

The POWER9 backend in GNU Compiler Collection GCC before version 10 could optimize multiple calls of the builtindarn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For example, within a single...

7.5CVSS7.4AI score0.03207EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/08/27 12:0 a.m.36 views

EulerOS 2.0 SP8 : gcc (EulerOS-SA-2019-1825)

According to the versions of the gcc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The gcc package contains the GNU Compiler Collection version 4.8.You'll need this package in order to compile C code. - Security fixes: -...

8.1CVSS7.8AI score0.02171EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2019/05/22 7:29 p.m.364 views

CVE-2018-12886

stackprotectprologue in cfgexpand.c and stackprotectepilogue in function.c in GNU Compiler Collection GCC 4.1 through 8 under certain circumstances generate instruction sequences when targeting ARM targets that spill the address of the stack protector guard, which allows an attacker to bypass the...

8.1CVSS7.2AI score0.02171EPSS
Exploits1References2
OSV
OSV
added 2019/05/22 7:29 p.m.35 views

CVE-2018-12886

stackprotectprologue in cfgexpand.c and stackprotectepilogue in function.c in GNU Compiler Collection GCC 4.1 through 8 under certain circumstances generate instruction sequences when targeting ARM targets that spill the address of the stack protector guard, which allows an attacker to bypass the...

8.1CVSS7.1AI score
Exploits0References2
OSV
OSV
added 2019/05/22 7:29 p.m.1 views

UBUNTU-CVE-2018-12886

stackprotectprologue in cfgexpand.c and stackprotectepilogue in function.c in GNU Compiler Collection GCC 4.1 through 8 under certain circumstances generate instruction sequences when targeting ARM targets that spill the address of the stack protector guard, which allows an attacker to bypass the...

8.1CVSS5.8AI score0.02171EPSS
Exploits1References3
CVE
CVE
added 2019/05/22 6:42 p.m.337 views

CVE-2018-12886

CVE-2018-12886: In GCC 4.1–8, on ARM targets, stack_protect_prologue/epilogue may spill the stack-protector guard address, enabling an attacker to bypass -fstack-protector families by controlling what the canary is compared against. Impact is stack overflow protection bypass; no exploitation deta...

8.1CVSS8AI score0.02171EPSS
Exploits1References2Affected Software1
CNVD
CNVD
added 2019/05/22 12:0 a.m.5 views

GNU Compiler Collection Security Bypass Vulnerability

The GNU Compiler Collection GCC is an open source compiler for programming languages from the GNU Project. A security vulnerability exists in GNU GCC versions 4.1 through 8. An attacker could exploit the vulnerability to bypass security protections...

8.1CVSS9.2AI score0.02171EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2019/02/27 12:0 a.m.43 views

CentOS Update for kernel CESA-2019:0415 centos6

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS8.1AI score0.00519EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/10/26 12:0 a.m.69 views

EulerOS Virtualization 2.5.0 : gcc (EulerOS-SA-2018-1331)

According to the versions of the gcc packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The gcc package contains the GNU Compiler Collection version 4.8.You'll need this package in order to compile C code. - Security...

4CVSS5.8AI score0.00442EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2018/08/14 8:10 p.m.85 views

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7.3 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

5.6CVSS7AI score0.08101EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2018/07/25 2:27 p.m.34 views

Security Bulletin: IBM QRadar Network Security is affected by a GNU Compiler Collection (GCC) vulnerability

Summary IBM QRadar Network Security has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2017-11671 DESCRIPTION: GNU Compiler Collection GCC could provide weaker than expected security, caused by a flaw in the ix86expandbuiltin function in i386.c. A remote attacker could...

4CVSS0.6AI score0.00442EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/07/07 12:5 a.m.27 views

Security Bulletin: A vulnerability in gcc affects PowerKVM

Summary PowerKVM is affected by a vulnerability in the GNU Compiler Collection GCC. IBM has now addressed this vulnerability. Vulnerability Details CVEID: CVE-2017-11671 DESCRIPTION: GNU Compiler Collection GCC could provide weaker than expected security, caused by a flaw in the ix86expandbuiltin...

4CVSS0.9AI score0.00442EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/07/02 12:0 a.m.29 views

EulerOS 2.0 SP3 : gcc (EulerOS-SA-2018-1174)

According to the versions of the gcc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The gcc package contains the GNU Compiler Collection version 4.8.You'll need this package in order to compile C code. - Security fixes: - Under...

4CVSS5.8AI score0.00442EPSS
Exploits0References2
OSV
OSV
added 2018/05/20 8:29 p.m.1 views

DEBIAN-CVE-2018-11319

Syntastic aka vim-syntastic through 3.9.0 does not properly handle searches for configuration files it searches the current directory up to potentially the root. This improper handling might be exploited for arbitrary code execution via a malicious gcc plugin, if an attacker has write access to a...

7.5CVSS7.9AI score0.02743EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2018/05/08 9:51 p.m.93 views

Moderate: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 6.5 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS7.1AI score0.18404EPSS
Exploits9References3
Tenable Nessus
Tenable Nessus
added 2018/05/02 12:0 a.m.32 views

EulerOS 2.0 SP2 : gcc (EulerOS-SA-2018-1116)

According to the versions of the gcc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The gcc package contains the GNU Compiler Collection version 4.8.You'll need this package in order to compile C code. - Security fixes: - Under...

4CVSS5.8AI score0.00442EPSS
Exploits0References2
Rows per page
Query Builder