CVE-2016-4489

Опубликовано: 01 апр. 2016

Источник: redhat

CVSS3: 5.9

CVSS2: 4

EPSS Низкий

Описание

Integer overflow in the gnu_special function in libiberty allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted binary, related to the "demangling of virtual tables."

Отчет

Red Hat Product Security has rated this issue as having Low security impact. This issue is not currently planned to be addressed in future updates. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	binutils	Will not fix
Red Hat Enterprise Linux 5	binutils220	Will not fix
Red Hat Enterprise Linux 5	compat-gcc-295	Will not fix
Red Hat Enterprise Linux 5	compat-gcc-296	Will not fix
Red Hat Enterprise Linux 5	compat-gcc-32	Will not fix
Red Hat Enterprise Linux 5	compat-gcc-34	Will not fix
Red Hat Enterprise Linux 5	gcc	Will not fix
Red Hat Enterprise Linux 5	gcc44	Will not fix
Red Hat Enterprise Linux 5	gdb	Will not fix
Red Hat Enterprise Linux 6	binutils	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-190

https://bugzilla.redhat.com/show_bug.cgi?id=1333336gcc: Invalid write due to integer overflow

EPSS

Процентиль: 62%

0.00435

Низкий

5.9 Medium

CVSS3

4 Medium

CVSS2

Связанные уязвимости

CVE-2016-4489

CVSS3: 5.5

ubuntu

почти 9 лет назад

CVE-2016-4489

CVSS3: 5.5

nvd

почти 9 лет назад

CVE-2016-4489

CVSS3: 5.5

debian

почти 9 лет назад

Integer overflow in the gnu_special function in libiberty allows remot ...

GHSA-8h34-rg43-xgpw

CVSS3: 5.5

github

больше 3 лет назад

EPSS

Процентиль: 62%

0.00435

Низкий

5.9 Medium

CVSS3

4 Medium

CVSS2