CVE-2008-1685

06.04.2008, 23:44

gcc 4.2.0 through 4.3.0 in GNU Compiler Collection, when casts are not used, considers the sum of a pointer and an int to be greater than or equal to the pointer, which might lead to removal of length testing code that was intended as a protection mechanism against integer overflow and buffer overflow attacks, and provide no diagnostic message about this removal. NOTE: the vendor has determined that this compiler behavior is correct according to section 6.5.6 of the C99 standard (aka ISO/IEC 9899:1999)

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Vector
NIST	NIST	6.8 UNKNOWN	NETWORK	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:P
mitre	CNA	---			---
CVE	ADP	---			---

Base Score

CVSS 3.x

EPSS Score

Percentile: 64%

Vendor	Product	Version
gnu	gcc	4.2.0
gnu	gcc	4.2.1
gnu	gcc	4.2.2
gnu	gcc	4.2.3
gnu	gcc	4.2.4
gnu	gcc	4.3.0

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

gcc-4.2

karmic	ignored
jaunty	ignored
intrepid	ignored
hardy	ignored
gutsy	ignored
feisty	dne
edgy	dne
dapper	dne

gcc-4.3

karmic	ignored
jaunty	ignored
intrepid	ignored
hardy	dne
gutsy	dne
feisty	dne
edgy	dne
dapper	dne

Common Weakness Enumeration

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=26763

http://www.kb.cert.org/vuls/id/162289

https://exchange.xforce.ibmcloud.com/vulnerabilities/41686

http://gcc.gnu.org/bugzilla/show_bug.cgi?id=26763

http://www.kb.cert.org/vuls/id/162289

https://exchange.xforce.ibmcloud.com/vulnerabilities/41686