[Secure-testing-commits] r22449 - data/CVE
Michael Gilbert
mgilbert at alioth.debian.org
Sun Jun 2 19:53:38 UTC 2013
Author: mgilbert
Date: 2013-06-02 19:53:38 +0000 (Sun, 02 Jun 2013)
New Revision: 22449
Modified:
data/CVE/list
Log:
gcc issue research
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-06-02 19:51:26 UTC (rev 22448)
+++ data/CVE/list 2013-06-02 19:53:38 UTC (rev 22449)
@@ -25466,6 +25466,9 @@
[wheezy] - gcc-4.4 <no-dsa> (Potentially affected apps need to be recompiled, if such issues are spotted in apps, these cases can be fixed on a case-by-case basis)
- gcc-4.6 <unfixed> (low)
[wheezy] - gcc-4.6 <no-dsa> (Potentially affected apps need to be recompiled, if such issues are spotted in apps, these cases can be fixed on a case-by-case basis)
+ - gcc-4.7 <unfixed> (low; bug #710380)
+ [wheezy] - gcc-4.7 <no-dsa> (Potentially affected apps need to be recompiled, if such issues are spotted in apps, these cases can be fixed on a case-by-case basis)
+ - gcc-4.8 4.8.0-1 (low)
NOTE: Are there apps known to be exploitable through this?
NOTE: Any application using unguarded memory allocation would be susceptible to DoS anyway?
NOTE: This should be addressed in jessie by getting this fixed in gcc 4.7, so that the archive is
More information about the Secure-testing-commits
mailing list