Wind River Support Network

HomeDefectsLIN6-13278
Fixed

LIN6-13278 : Security Advisory - gcc - CVE-2017-11671

Created: Jul 27, 2017    Updated: Dec 3, 2018
Resolved Date: Nov 27, 2017
Found In Version: 6.0.0.34
Fix Version: 6.0.0.36
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Toolchain

Description

Under certain circumstances, the ix86_expand_builtin function in i386.c in GNU Compiler Collection (GCC) version 4.6, 4.7, 4.8, 4.9, 5 before 5.5, and 6 before 6.4 will generate instruction sequences that clobber the status flag of the RDRAND and RDSEED intrinsics before it can be read, potentially causing failures of these instructions to go unreported.

https://nvd.nist.gov/vuln/detail/CVE-2017-11671

Other Downloads

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube