Buffer overflow in Gnu Gcc
CVE-2008-1685
gcc 4.2.0 through 4.3.0 in GNU Compiler Collection, when casts are not used, considers the sum of a pointer and an int to be greater than or equal to the pointer, which might lead to removal of length testing code that was intended as a pr…
Vulnerability class: Buffer Overflow
EPSS: 0.013 (65.8th percentile) — read the EPSS interpretation.
Affected products
- Gnu Gcc — versions 4.2.0, 4.2.1, 4.2.2
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (x_refsource_MISC)
- cve@mitre.org (US Government Resource, x_refsource_CERT-VN, third-party-advisory)