Уязвимость целочисленного переполнения в операторе "new[]" в GCC до версии 4.8.0
Описание
Уязвимость переполнения целого числа в операторе new[] в GCC может позволить злоумышленникам достичь неуточненных последствий.
Затронутые версии ПО
- GCC < 4.8.0
Тип уязвимости
Целочисленное переполнение (integer overflow)
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | compat-gcc-295 | Will not fix | ||
| Red Hat Enterprise Linux 5 | compat-gcc-296 | Will not fix | ||
| Red Hat Enterprise Linux 5 | compat-gcc-32 | Will not fix | ||
| Red Hat Enterprise Linux 5 | compat-gcc-34 | Will not fix | ||
| Red Hat Enterprise Linux 5 | gcc | Will not fix | ||
| Red Hat Enterprise Linux 5 | gcc43 | Will not fix | ||
| Red Hat Enterprise Linux 5 | gcc44 | Will not fix | ||
| Red Hat Enterprise Linux 6 | compat-gcc-295 | Will not fix | ||
| Red Hat Enterprise Linux 6 | compat-gcc-296 | Will not fix | ||
| Red Hat Enterprise Linux 6 | compat-gcc-32 | Will not fix |
Показывать по
Дополнительная информация
Статус:
EPSS
3.7 Low
CVSS2
Связанные уязвимости
operator new[] sometimes returns pointers to heap blocks which are too small. When a new array is allocated, the C++ run-time has to calculate its size. The product may exceed the maximum value which can be stored in a machine register. This error is ignored, and the truncated value is used for the heap allocation. This may lead to heap overflows and therefore security bugs. (See http://cert.uni-stuttgart.de/advisories/calloc.php for further references.)
Integer overflow in the new[] operator in gcc before 4.8.0 allows attackers to have unspecified impacts.
Integer overflow in the new[] operator in gcc before 4.8.0 allows atta ...
Integer overflow in the new[] operator in gcc before 4.8.0 allows attackers to have unspecified impacts.
EPSS
3.7 Low
CVSS2