Buffer overflow in Gnu Gcc

CVE-2008-1685

gcc 4.2.0 through 4.3.0 in GNU Compiler Collection, when casts are not used, considers the sum of a pointer and an int to be greater than or equal to the pointer, which might lead to removal of length testing code that was intended as a pr…

Vulnerability class: Buffer Overflow

EPSS: 0.013 (65.8th percentile) — read the EPSS interpretation.

Affected products

  • Gnu Gcc — versions 4.2.0, 4.2.1, 4.2.2
  • N/a — versions n/a

Weakness classification (CWE)

References