599802 – sys-devel/gcc: Stack overflow due to infinite recursion in d_print_comp

Bug 599802 - sys-devel/gcc: Stack overflow due to infinite recursion in d_print_comp

Summary: sys-devel/gcc: Stack overflow due to infinite recursion in d_print_comp

Status:	RESOLVED DUPLICATE of bug 582240

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	Normal normal (vote)
Assignee:	Gentoo Security

URL:	https://gcc.gnu.org/bugzilla/show_bug...
Whiteboard:	A3 [upstream]
Keywords:

Depends on:
Blocks:

Reported:	2016-11-15 15:08 UTC by Thomas Deutschmann (RETIRED)
Modified:	2016-11-15 15:27 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Thomas Deutschmann (RETIRED) gentoo-dev

2016-11-15 15:08:49 UTC

A vulnerability was found in gcc. A stack overflow in the libiberty demangler library causes its host applications to crash. The stack contains return addresses that are not mapped in the inferior's process address space and/or the stack pointer is pointing to a location outside the default stack region. These conditions likely indicate stack corruption, which is generally considered exploitable.


References:
https://bugzilla.redhat.com/show_bug.cgi?id=1333371
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-4491
http://seclists.org/oss-sec/2016/q2/240

Comment 1 Thomas Deutschmann (RETIRED) gentoo-dev

2016-11-15 15:27:23 UTC


*** This bug has been marked as a duplicate of bug 582240 ***