Lucene search
K

173 matches found

RedHat Linux
RedHat Linux
added 2018/04/24 3:16 p.m.137 views

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 7.2 Advanced Update Support, Red Hat Enterprise Linux 7.2 Telco Extended Update Support, and Red Hat Enterprise Linux 7.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impac...

7.8CVSS7.1AI score0.74041EPSS
Exploits14References2
RedHat Linux
RedHat Linux
added 2018/04/10 9:19 a.m.5 views

gcc: GCC generates incorrect code for RDRAND/RDSEED intrinsics

Under certain circumstances, the ix86expandbuiltin function in i386.c in GNU Compiler Collection GCC version 4.6, 4.7, 4.8, 4.9, 5 before 5.5, and 6 before 6.4 will generate instruction sequences that clobber the status flag of the RDRAND and RDSEED intrinsics before it can be read, potentially...

4CVSS7.3AI score0.00442EPSS
Exploits0References4
CNVD
CNVD
added 2018/03/09 12:0 a.m.2 views

libgfortran Integer Overflow Vulnerability

libgfortran is a Fortran compilation library developed for GCC GNU Compiler Collection. An integer overflow vulnerability exists in libgfortran. A remote attacker could exploit this vulnerability to execute arbitrary code or cause a denial of service Fortran application crash...

9.8CVSS8AI score0.05886EPSS
Exploits0References1
Fedora
Fedora
added 2017/08/01 9:57 p.m.31 views

[SECURITY] Fedora 25 Update: gcc-6.4.1-1.fc25

The gcc package contains the GNU Compiler Collection version 6. You'll need this package in order to compile C code...

4CVSS3.9AI score0.00442EPSS
Exploits0
CNVD
CNVD
added 2017/07/27 12:0 a.m.2 views

GNU GCC Insecure Random Number Generator Vulnerability

GNU gcc GNU Compiler Collection is an open source compiler for programming languages developed by the GNU Project. An insecure random number generator vulnerability exists in GNU GCC. An attacker could exploit the vulnerability to gain access to perform certain unauthorized operations...

4CVSS4.9AI score0.00442EPSS
Exploits0References1
NVD
NVD
added 2017/07/26 9:29 p.m.20 views

CVE-2017-11671

Under certain circumstances, the ix86expandbuiltin function in i386.c in GNU Compiler Collection GCC version 4.6, 4.7, 4.8, 4.9, 5 before 5.5, and 6 before 6.4 will generate instruction sequences that clobber the status flag of the RDRAND and RDSEED intrinsics before it can be read, potentially...

4CVSS4AI score0.00442EPSS
Exploits0References5
OSV
OSV
added 2017/07/26 9:29 p.m.5 views

UBUNTU-CVE-2017-11671

Under certain circumstances, the ix86expandbuiltin function in i386.c in GNU Compiler Collection GCC version 4.6, 4.7, 4.8, 4.9, 5 before 5.5, and 6 before 6.4 will generate instruction sequences that clobber the status flag of the RDRAND and RDSEED intrinsics before it can be read, potentially...

4CVSS6.1AI score0.00442EPSS
Exploits0References6
CVE
CVE
added 2017/07/26 9:0 p.m.215 views

CVE-2017-11671

CVE-2017-11671 affects GCC: the ix86_expand_builtin path in i386.c can generate RDRAND/RDSEED instruction sequences that clobber the status flag before being read, potentially causing reduced randomness. Documented in GCC bug reports and affected across GCC 4.6–4.9, 5 before 5.5, and 6 before 6.4...

4CVSS4.1AI score0.00442EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2017/06/07 8:29 p.m.5 views

UBUNTU-CVE-2016-4973

Binaries compiled against targets that use the libssp library in GCC for stack smashing protection SSP might allow local users to perform buffer overflow attacks by leveraging lack of the Object Size Checking feature...

7.8CVSS7.3AI score0.00428EPSS
Exploits0References2
OSV
OSV
added 2016/10/16 9:59 p.m.9 views

CVE-2016-7042

The prockeysshow function in security/keys/proc.c in the Linux kernel through 4.8.2, when the GNU Compiler Collection gcc stack protector is enabled, uses an incorrect buffer size for certain timeout data, which allows local users to cause a denial of service stack memory corruption and panic by...

6.2CVSS6.4AI score
Exploits0References8
OSV
OSV
added 2016/10/16 9:59 p.m.1 views

DEBIAN-CVE-2016-7042

The prockeysshow function in security/keys/proc.c in the Linux kernel through 4.8.2, when the GNU Compiler Collection gcc stack protector is enabled, uses an incorrect buffer size for certain timeout data, which allows local users to cause a denial of service stack memory corruption and panic by...

6.2CVSS6.2AI score0.00395EPSS
Exploits0References1
Prion
Prion
added 2016/10/16 9:59 p.m.28 views

Memory corruption

The prockeysshow function in security/keys/proc.c in the Linux kernel through 4.8.2, when the GNU Compiler Collection gcc stack protector is enabled, uses an incorrect buffer size for certain timeout data, which allows local users to cause a denial of service stack memory corruption and panic by...

4.9CVSS6.8AI score0.00395EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2016/10/16 9:0 p.m.59 views

CVE-2016-7042

The prockeysshow function in security/keys/proc.c in the Linux kernel through 4.8.2, when the GNU Compiler Collection gcc stack protector is enabled, uses an incorrect buffer size for certain timeout data, which allows local users to cause a denial of service stack memory corruption and panic by...

6.2CVSS7AI score0.00395EPSS
Exploits0
CNVD
CNVD
added 2016/08/23 12:0 a.m.4 views

GNU gcc Local Security Bypass Vulnerability

GNU gcc GNU Compiler Collection is an open source compiler for programming languages developed by the GNU Project. A local security bypass vulnerability exists in GNU gcc, which can be exploited by attackers to bypass security restrictions and perform unauthorized operations...

7.8CVSS6.6AI score0.00428EPSS
Exploits0References1
CNVD
CNVD
added 2016/05/10 12:0 a.m.4 views

GNU gcc Stack Buffer Overflow Vulnerability

GNU gcc GNU Compiler Collection is an open source compiler for programming languages developed by the GNU Project. A stack buffer overflow vulnerability exists in the libiberty demangler library of GNU gcc. An attacker could exploit this vulnerability to crash the host application, causing stack...

5.5CVSS9.6AI score0.0178EPSS
Exploits0References1
CNVD
CNVD
added 2016/05/10 12:0 a.m.4 views

GNU gcc Integer Overflow Vulnerability

GNU gcc GNU Compiler Collection is an open source compiler for programming languages developed by the GNU Project. An integer overflow vulnerability exists in GNU gcc, which stems from inconsistent use of the long and int types for string/array lengths in the cp-demangle.c file. An attacker can...

5.5CVSS9.5AI score0.01824EPSS
Exploits0References1
CNVD
CNVD
added 2016/05/10 12:0 a.m.4 views

GNU gcc memory misreference vulnerability (CNVD-2016-03093)

GNU gcc GNU Compiler Collection is an open source compiler for programming languages developed by the GNU Project. A memory misreference vulnerability exists in GNU gcc. An attacker can exploit the vulnerability to cause invalid writes with the help of the 'btypevec' parameter...

5.5CVSS9.1AI score0.01672EPSS
Exploits0References1
CNVD
CNVD
added 2016/05/10 12:0 a.m.4 views

GNU gcc Denial of Service Vulnerability

GNU gcc GNU Compiler Collection is an open source compiler for programming languages developed by the GNU Project. A security vulnerability exists in the libiberty demangler library of GNU gcc. An attacker could exploit the vulnerability to read array index values in mangled strings, crashing the...

5.5CVSS9.1AI score0.01615EPSS
Exploits0References1
CNVD
CNVD
added 2016/05/10 12:0 a.m.5 views

GNU gcc integer overflow vulnerability (CNVD-2016-03094)

GNU gcc GNU Compiler Collection is an open source compiler for programming languages developed by the GNU Project. An integer overflow vulnerability exists in the 'gnuspecial' method of GNU gcc. An attacker could exploit this vulnerability to cause an invalid write...

5.5CVSS9.2AI score0.01728EPSS
Exploits0References1
CNVD
CNVD
added 2016/05/10 12:0 a.m.5 views

GNU gcc integer overflow vulnerability (CNVD-2016-03095)

GNU gcc GNU Compiler Collection is an open source compiler for programming languages developed by the GNU Project. An integer overflow vulnerability exists in GNU gcc, which arises from a program's failure to properly handle data of type signed int. An attacker could exploit this vulnerability to...

7.8CVSS9.2AI score0.07267EPSS
Exploits1References1
Rows per page
Query Builder