#VU81045 Security features bypass in Gnu Compiler Collection - CVE-2023-4039


Vulnerability identifier: #VU81045

Vulnerability risk: Medium

CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-4039

CWE-ID: CWE-254

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Gnu Compiler Collection
Client/Desktop applications / Software for system administration

Vendor: GNU

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to the GCC's stack smashing protection does not detect or defend against overflows of dynamically-sized local variables on AArch64 targets. A remote attacker can bypass expected security restrictions and successfully exploit buffer overflow vulnerabilities.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Gnu Compiler Collection: 2.8.0 - 13.2.0

External links
https://github.com/metaredteam/external-disclosures/security/advisories/GHSA-x7ch-h5rf-w2mf
https://developer.arm.com/Arm%20Security%20Center/GCC%20Stack%20Protector%20Vulnerability%20AArch64

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Amazon Linux AMI update for gcc
openEuler 24.03 LTS update for gcc
Multiple vulnerabilities in Dell RecoverPoint for Virtual Machines
Multiple vulnerabilities in Dell ObjectScale
Multiple vulnerabilities in IBM Cloud Transformation Advisor
Multiple vulnerabilities in Dell PowerStore Family
Multiple vulnerabilities in Dell EMC VxRail Appliance
Multiple vulnerabilities in Dell Storage Resource Manager (SRM) and Dell Storage Monitoring and Reporting (SMR)
Multiple vulnerabilities in IBM Sterling Order Management
SUSE update for gcc12