Lucene search
K

173 matches found

OSV
OSV
added 2025/02/13 10:4 a.m.17 views

RHSA-2025:1346 Red Hat Security Advisory: gcc security update

Bulletin has no description...

6.1CVSS7.3AI score0.8383EPSS
Exploits6References9
OSV
OSV
added 2025/02/12 10:4 a.m.16 views

RHSA-2025:1308 Red Hat Security Advisory: gcc security update

Bulletin has no description...

6.1CVSS7.3AI score0.8383EPSS
Exploits6References9
RedHat Linux
RedHat Linux
added 2025/02/12 12:40 a.m.17 views

Moderate: Red Hat Security Advisory: gcc-toolset-14-gcc security update

An update for gcc-toolset-14-gcc is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.9CVSS7.2AI score0.8383EPSS
Exploits6References2
OSV
OSV
added 2025/01/17 2:7 p.m.4 views

OESA-2025-1042 gcc security update

The gcc package contains the GNU Compiler Collection version 12. You'll need this package in order to compile C code. Security Fixes: DISPUTEDA failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an existing buffer overflow in...

4.8CVSS7AI score0.00666EPSS
Exploits1References2
OSV
OSV
added 2024/10/23 5:15 p.m.6 views

AZL-51681 CVE-2024-50383 affecting package botan2 2.14.0-2

Botan before 3.6.0, when certain GCC versions are used, has a compiler-induced secret-dependent operation in lib/utils/donna128.h in donna128 used in Chacha-Poly1305 and x25519. An addition can be skipped if a carry is not set. This was observed for GCC 11.3.0 with -O2 on MIPS, and GCC on x86-i38...

5.9CVSS5.8AI score0.00542EPSS
Exploits1References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 12:44 p.m.7 views

Malicious code in gcc-patch (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
SUSE CVE
SUSE CVE
added 2024/05/21 1:59 a.m.3 views

SUSE CVE-2024-35917

In the Linux kernel, the following vulnerability has been resolved: s390/bpf: Fix bpfplt pointer arithmetic Kui-Feng Lee reported a crash on s390x triggered by the dummystops/dummyinitptrarg test 1: 0x2 bpfstructopstestrun+0x156/0x250 sysbpf+0xa1a/0xd00 s390xsysbpf+0x44/0x50 dosyscall+0x244/0x300...

5.5CVSS6.8AI score0.0021EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2024/05/16 12:0 a.m.4 views

The vulnerability in the compilation of compilers for various programming languages in the GNU Compiler Collection (GCC) relates to the incorrect handling of the sum of a pointer and an integer. This vulnerability allows an attacker to trigger a service failure or cause other adverse effects.

The vulnerability in the compiler set for various programming languages in the GNU Compiler Collection GCC relates to the incorrect handling of the sum of a pointer and an integer, when the sum is greater than or equal to the pointer, without using transformations. This can lead to the...

9CVSS5.6AI score0.01253EPSS
Exploits0References8Affected Software1
RedHat Linux
RedHat Linux
added 2024/02/07 4:33 p.m.7 views

kernel: Executable Space Protection Bypass

A vulnerability was found in the Linux kernel when certain binary files have the exec-all attribute with gcc. This issue can cause the execution of bytes located in the non-executable regions of a file...

7.8CVSS6.8AI score0.01054EPSS
Exploits1References6
OSV
OSV
added 2023/10/13 11:6 a.m.4 views

OESA-2023-1735 gcc security update

The gcc package contains the GNU Compiler Collection version 10. You'll need this package in order to compile C code. Security Fixes: A failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an existing buffer overflow in dynamically-siz...

4.8CVSS7AI score0.00666EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/10/09 12:0 a.m.4 views

PT-2023-9765 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a format-overflow warning in the f2fs component of the Linux kernel. The warning occurs when using the gcc compiler with the W=1 option. The problem is in the...

4.6CVSS5.2AI score0.00249EPSS
Exploits0References27
BDU FSTEC
BDU FSTEC
added 2023/09/21 12:0 a.m.4 views

The vulnerability of the stack protection function in the GNU Compiler Collection (GCC), various programming languages, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the stack protection function in the GNU Compiler Collection GCC for various programming languages is related to a violation of the data protection mechanism. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of t...

4.8CVSS6.4AI score0.00666EPSS
Exploits1References7Affected Software7
Microsoft CVE
Microsoft CVE
added 2023/09/15 7:0 a.m.5 views

GCC's-fstack-protector fails to guard dynamically-sized local variables on AArch64

...

4.8CVSS6.3AI score0.00666EPSS
Exploits1
OSV
OSV
added 2023/09/13 9:15 a.m.5 views

AZL-28769 CVE-2023-4039 affecting package gcc for versions less than 11.2.0-6

DISPUTEDA failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an existing buffer overflow in dynamically-sized local variables in your application without this being detected. This stack-protector failure only applies to C99-style...

4.8CVSS6.9AI score0.00666EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/09/12 12:0 a.m.3 views

GCC Security Vulnerabilities

GCC is a collection of GNU compilers. It is primarily used to compile the C and C++ languages. A security vulnerability exists in GCC, which stems from the presence of a buffer overflow that could lead to an uncontrolled loss of availability or further compromise confidentiality or integrity...

4.8CVSS7.2AI score0.00666EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2023/09/12 12:0 a.m.7 views

PT-2023-5294

Name of the Vulnerable Software and Affected Versions GCC versions prior to the fixed version Description A failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacker to exploit an existing buffer overflow in dynamically-sized local variables in an...

4.8CVSS7AI score0.00666EPSS
Exploits1References104
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.34 views

Oracle Linux 8 : gcc (ELSA-2020-1864)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-1864 advisory. - CVE-2018-12207 / Intel SKX102 OL8 gcc: Intel Mitigation for CVE: CVE-2018-12207 Tenable has extracted the preceding description block directly from the Oracle...

7.5CVSS6.8AI score0.03207EPSS
Exploits0References2
OSV
OSV
added 2023/06/08 9:15 p.m.7 views

AZL-27123 CVE-2023-29405 affecting package msft-golang for versions less than 1.20.7-1

The go command may execute arbitrary code at build time when using cgo. This may occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This is can by triggered by linker flags, specified via a "cgo LDFLAGS" directive. Flags containing...

9.8CVSS7AI score0.01728EPSS
Exploits0References1
OSV
OSV
added 2023/06/08 9:15 p.m.1 views

UBUNTU-CVE-2023-29405

The go command may execute arbitrary code at build time when using cgo. This may occur when running "go get" on a malicious module, or when running any other command which builds untrusted code. This is can by triggered by linker flags, specified via a "cgo LDFLAGS" directive. Flags containing...

9.8CVSS7AI score0.01728EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.7 views

kernel: Executable Space Protection Bypass

A vulnerability was found in the Linux kernel when certain binary files have the exec-all attribute with gcc. This issue can cause the execution of bytes located in the non-executable regions of a file...

7.8CVSS6.8AI score0.01054EPSS
Exploits1References6
Rows per page
Query Builder