SB2018122309 - Multiple vulnerabilities in tinycc
Published: December 23, 2018 Updated: August 8, 2020
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 5 vulnerabilities.
1) Out-of-bounds write (CVE-ID: CVE-2019-12495)
The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.
An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. Compiling a crafted source file leads to a one-byte out-of-bounds write in the gsym_addr function in x86_64-gen.c. This occurs because tccasm.c mishandles section switches.
2) Out-of-bounds write (CVE-ID: CVE-2019-9754)
The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.
An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. Compiling a crafted source file leads to an 1 byte out of bounds write in the end_macro function in tccpp.c.
3) Out-of-bounds write (CVE-ID: CVE-2018-20374)
The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.
An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. Compiling a crafted source file leads to an 8 byte out of bounds write in the use_section1 function in tccasm.c.
4) Out-of-bounds write (CVE-ID: CVE-2018-20375)
The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.
An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. Compiling a crafted source file leads to an 8 byte out of bounds write in the sym_pop function in tccgen.c.
5) Out-of-bounds write (CVE-ID: CVE-2018-20376)
The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.
An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. Compiling a crafted source file leads to an 8 byte out of bounds write in the asm_parse_directive function in tccasm.c.
Remediation
Install update from vendor's website.
References
- http://www.securityfocus.com/bid/108541
- https://lists.nongnu.org/archive/html/tinycc-devel/2019-05/msg00044.html
- https://repo.or.cz/tinycc.git/commit/d04ce7772c2bc2781ab2502e0b1f1964488814b5
- https://lists.nongnu.org/archive/html/tinycc-devel/2019-03/msg00038.html
- https://lists.nongnu.org/archive/html/tinycc-devel/2018-12/msg00015.html
- https://lists.nongnu.org/archive/html/tinycc-devel/2018-12/msg00014.html
- https://lists.nongnu.org/archive/html/tinycc-devel/2018-12/msg00013.html