CVE-2006-1902
Published: 20 April 2006
fold_binary in fold-const.c in GNU Compiler Collection (gcc) 4.1 improperly handles pointer overflow when folding a certain expr comparison to a corresponding offset comparison in cases other than EQ_EXPR and NE_EXPR, which might introduce buffer overflow vulnerabilities into applications that could be exploited by context-dependent attackers.NOTE: the vendor states that the essence of the issue is "not correctly interpreting an offset to a pointer as a signed value."
Priority
Status
Package | Release | Status |
---|---|---|
gcc-4.0 Launchpad, Ubuntu, Debian |
dapper |
Not vulnerable
|
edgy |
Not vulnerable
|
|
feisty |
Not vulnerable
|
|
upstream |
Needs triage
|
|
gcc-4.1 Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
edgy |
Released
(4.1.1-13ubuntu5)
|
|
feisty |
Released
(4.1.1-13ubuntu5)
|
|
upstream |
Needs triage
|
|
gcc-4.2 Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
edgy |
Does not exist
|
|
feisty |
Does not exist
|
|
upstream |
Needs triage
|
|
gcj-4.1 Launchpad, Ubuntu, Debian |
dapper |
Not vulnerable
|
edgy |
Released
(4.1.1-14ubuntu7)
|
|
feisty |
Released
(4.1.1-14ubuntu7)
|
|
upstream |
Needs triage
|
|
gcj-4.2 Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
edgy |
Does not exist
|
|
feisty |
Does not exist
|
|
upstream |
Needs triage
|
|
gdc-4.1 Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
edgy |
Does not exist
|
|
feisty |
Does not exist
|
|
upstream |
Needs triage
|
|
gnat-4.1 Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
edgy |
Released
(4.1.1-15ubuntu1)
|
|
feisty |
Released
(4.1.1-15ubuntu1)
|
|
upstream |
Needs triage
|
|
gnat-4.2 Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
edgy |
Does not exist
|
|
feisty |
Does not exist
|
|
upstream |
Needs triage
|
|
gpc-4.1 Launchpad, Ubuntu, Debian |
dapper |
Does not exist
|
edgy |
Does not exist
|
|
feisty |
Does not exist
|
|
upstream |
Needs triage
|