Integer Overflows

2020-09-2106:27:13

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.026 Low

EPSS

Percentile

90.4%

JSON

GCC is vulnerable to integer overflows in libgfortran which allow remote attackers to execute arbitrary code or cause a denial of service (Fortran application crash) via vectors related to array allocation.

CPENameOperatorVersion
gcc-4.8:trustyeq4.8.2-19ubuntu1
gcc-4.8:trustyeq4.8.2-19ubuntu1

CPE	Name	Operator	Version
	gcc-4.8:trusty	eq	4.8.2-19ubuntu1
	gcc-4.8:trusty	eq	4.8.2-19ubuntu1

References

www.openwall.com/lists/oss-security/2014/07/24/1

www.openwall.com/lists/oss-security/2014/07/31/6

bugzilla.redhat.com/show_bug.cgi?id=1122812

exchange.xforce.ibmcloud.com/vulnerabilities/94849

gcc.gnu.org/viewcvs/gcc/trunk/libgfortran/ChangeLog?limit_changes=0&view=markup&pathrev=211721

0.026 Low

EPSS

Percentile

90.4%

JSON

Related for VERACODE:26948