Lucene search
GoogleOSV:CVE-2018-12886HistoryMay 22, 2019 - 7:29 p.m.
CVE-2018-12886
2019-05-2219:29:00
Google
osv.dev
13
stack_protect_prologue in cfgexpand.c and stack_protect_epilogue in function.c in GNU Compiler Collection (GCC) 4.1 through 8 (under certain circumstances) generate instruction sequences when targeting ARM targets that spill the address of the stack protector guard, which allows an attacker to bypass the protection of -fstack-protector, -fstack-protector-all, -fstack-protector-strong, and -fstack-protector-explicit against stack overflow by controlling what the stack canary is compared against.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gcc | eq | releases/gcc-4.1.1 | |
| gcc | eq | releases/gcc-4.1.2 | |
| gcc | eq | releases/gcc-4.1.0 |
Related
cvelist
cvelist
CVE-2018-12886
2019-05-22 18:42:10
nvd
nvd
CVE-2018-12886
2019-05-22 19:29:00
prion
prion
Stack overflow
2019-05-22 19:29:00
openvas
openvas
Huawei EulerOS: Security Advisory for gcc (EulerOS-SA-2019-1825)
2020-01-23 00:00:00
ubuntucve
ubuntucve
CVE-2018-12886
2019-05-22 00:00:00
cve
cve
CVE-2018-12886
2019-05-22 19:29:00
debiancve
debiancve
CVE-2018-12886
2019-05-22 19:29:00
nessus
nessus
EulerOS 2.0 SP8 : gcc (EulerOS-SA-2019-1825)
2019-08-27 00:00:00
redhatcve
redhatcve
CVE-2018-12886
2020-03-31 08:06:50
rosalinux
rosalinux
Advisory ROSA-SA-2021-1838
2021-07-02 16:44:11
ics
ics
Siemens SCALANCE Third-Party
2023-03-21 12:00:00
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00