vulnerability
Oracle Linux: CVE-2018-20673: ELSA-2021-4386: gcc security and bug fix update (LOW)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:N/A:P) | Dec 27, 2018 | Nov 17, 2021 | Dec 3, 2025 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
Dec 27, 2018
Added
Nov 17, 2021
Modified
Dec 3, 2025
Description
The demangle_template function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, contains an integer overflow vulnerability (for "Create an array for saving the template argument values") that can trigger a heap-based buffer overflow, as demonstrated by nm.
Solutions
oracle-linux-upgrade-cpporacle-linux-upgrade-gccoracle-linux-upgrade-gcc-coracle-linux-upgrade-gcc-gdb-pluginoracle-linux-upgrade-gcc-gfortranoracle-linux-upgrade-gcc-offload-nvptxoracle-linux-upgrade-gcc-plugin-develoracle-linux-upgrade-libasanoracle-linux-upgrade-libatomicoracle-linux-upgrade-libatomic-staticoracle-linux-upgrade-libgccoracle-linux-upgrade-libgfortranoracle-linux-upgrade-libgomporacle-linux-upgrade-libgomp-offload-nvptxoracle-linux-upgrade-libitmoracle-linux-upgrade-libitm-develoracle-linux-upgrade-liblsanoracle-linux-upgrade-libquadmathoracle-linux-upgrade-libquadmath-develoracle-linux-upgrade-libstdcoracle-linux-upgrade-libstdc-develoracle-linux-upgrade-libstdc-docsoracle-linux-upgrade-libstdc-staticoracle-linux-upgrade-libtsanoracle-linux-upgrade-libubsan
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.