vulnerability
Amazon Linux 2023: CVE-2022-27943: Low priority package update for gcc
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:N/A:P) | Mar 26, 2022 | Feb 17, 2025 | Jul 9, 2025 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
Mar 26, 2022
Added
Feb 17, 2025
Modified
Jul 9, 2025
Description
libiberty/rust-demangle.c in GNU GCC 11.2 allows stack consumption in demangle_const, as demonstrated by nm-new.
A flaw was found in binutils, where GNU GCC is vulnerable to a denial of service caused by a stack consumption in the demangle_const() function in ibiberty/rust-demangle.c. The vulnerability exists due to the application not properly controlling the consumption of internal resources. By persuading a victim to open a specially-crafted file, an attacker could cause a denial of service.
A flaw was found in binutils, where GNU GCC is vulnerable to a denial of service caused by a stack consumption in the demangle_const() function in ibiberty/rust-demangle.c. The vulnerability exists due to the application not properly controlling the consumption of internal resources. By persuading a victim to open a specially-crafted file, an attacker could cause a denial of service.
Solutions
amazon-linux-2023-upgrade-cppamazon-linux-2023-upgrade-cpp-debuginfoamazon-linux-2023-upgrade-gccamazon-linux-2023-upgrade-gcc-camazon-linux-2023-upgrade-gcc-c-debuginfoamazon-linux-2023-upgrade-gcc-debuginfoamazon-linux-2023-upgrade-gcc-debugsourceamazon-linux-2023-upgrade-gcc-gdb-pluginamazon-linux-2023-upgrade-gcc-gdb-plugin-debuginfoamazon-linux-2023-upgrade-gcc-gfortranamazon-linux-2023-upgrade-gcc-gfortran-debuginfoamazon-linux-2023-upgrade-gcc-offload-nvptxamazon-linux-2023-upgrade-gcc-offload-nvptx-debuginfoamazon-linux-2023-upgrade-gcc-plugin-develamazon-linux-2023-upgrade-gcc-plugin-devel-debuginfoamazon-linux-2023-upgrade-libasanamazon-linux-2023-upgrade-libasan-debuginfoamazon-linux-2023-upgrade-libasan-staticamazon-linux-2023-upgrade-libatomicamazon-linux-2023-upgrade-libatomic-debuginfoamazon-linux-2023-upgrade-libatomic-staticamazon-linux-2023-upgrade-libgccamazon-linux-2023-upgrade-libgcc-debuginfoamazon-linux-2023-upgrade-libgccjitamazon-linux-2023-upgrade-libgccjit-debuginfoamazon-linux-2023-upgrade-libgccjit-develamazon-linux-2023-upgrade-libgfortranamazon-linux-2023-upgrade-libgfortran-debuginfoamazon-linux-2023-upgrade-libgfortran-staticamazon-linux-2023-upgrade-libgompamazon-linux-2023-upgrade-libgomp-debuginfoamazon-linux-2023-upgrade-libgomp-offload-nvptxamazon-linux-2023-upgrade-libgomp-offload-nvptx-debuginfoamazon-linux-2023-upgrade-libitmamazon-linux-2023-upgrade-libitm-debuginfoamazon-linux-2023-upgrade-libitm-develamazon-linux-2023-upgrade-libitm-staticamazon-linux-2023-upgrade-liblsanamazon-linux-2023-upgrade-liblsan-debuginfoamazon-linux-2023-upgrade-liblsan-staticamazon-linux-2023-upgrade-libquadmathamazon-linux-2023-upgrade-libquadmath-debuginfoamazon-linux-2023-upgrade-libquadmath-develamazon-linux-2023-upgrade-libquadmath-staticamazon-linux-2023-upgrade-libstdcamazon-linux-2023-upgrade-libstdc-debuginfoamazon-linux-2023-upgrade-libstdc-develamazon-linux-2023-upgrade-libstdc-docsamazon-linux-2023-upgrade-libstdc-staticamazon-linux-2023-upgrade-libtsanamazon-linux-2023-upgrade-libtsan-debuginfoamazon-linux-2023-upgrade-libtsan-staticamazon-linux-2023-upgrade-libubsanamazon-linux-2023-upgrade-libubsan-debuginfoamazon-linux-2023-upgrade-libubsan-static
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.