CVE-2022-27943

5.5MEDIUM

Key Information:

Vendor: Gnu
Status: Gcc
Vendor: CVE Published:; 26 March 2022

Summary

libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in demangle_const, as demonstrated by nm-new.

References

https://sourceware.org/bugzilla/show_bug.cgi?id=28995

https://gcc.gnu.org/bugzilla/show_bug.cgi?id=105039

https://lists.fedoraproject.org/archives/list/package-ann...

vendor-advisory

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Mar 26, 2022
Vulnerability Reserved
Mar 26, 2022

.