[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

255116

 
 

909

 
 

198683

 
 

282

Paid content will be excluded from the download.


Download | Alert*
OVAL

RLSA-2021:4587 --- gcc

ID: oval:org.secpod.oval:def:4501328Date: (C)2023-04-03   (M)2024-06-13
Class: PATCHFamily: unix




The gcc packages provide compilers for C, C++, Java, Fortran, Objective C, and Ada 95 GNU, as well as related support libraries. Security Fix: * Developer environment: Unicode"s bidirectional override characters can cause trojan source attacks The following changes were introduced in gcc in order to facilitate detection of BiDi Unicode characters: This update implements a new warning option -Wbidirectional to warn about possibly dangerous bidirectional characters. There are three levels of warning supported by gcc: "-Wbidirectional=unpaired", which warns about improperly terminated BiDi contexts. "-Wbidirectional=none", which turns the warning off. "-Wbidirectional=any", which warns about any use of bidirectional characters. For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.

Platform:
Rocky Linux 8
Product:
gcc
cpp
libasan
libatomic
libgcc
libgfortran
libgomp
libitm
liblsan
libquadmath
libstdc++
libtsan
libubsan
Reference:
RLSA-2021:4587
CVE-2021-42574
CVE    1
CVE-2021-42574
CPE    3
cpe:/a:gnu:cpp
cpe:/a:gnu:gcc
cpe:/a:gnu:libatomic

© SecPod Technologies