[Bug 2054343] Re: CVE-2023-4039: ARM64 GCC
Mauricio Faria de Oliveira
2054343 at bugs.launchpad.net
Mon Jun 10 14:54:41 UTC 2024
gcc-12 fixed in 12.3.0-9, already in Mantic/Noble/Oracular (devel).
gcc-12 (12.3.0-9) unstable; urgency=medium
- Address stack protector and stack clash protection weaknesses
on AArch64. CVE-2023-4039.
$ rmadison -a source gcc-12
gcc-12 | 12-20220319-1ubuntu1 | jammy | source
gcc-12 | 12.3.0-1ubuntu1~22.04 | jammy-security | source
gcc-12 | 12.3.0-1ubuntu1~22.04 | jammy-updates | source
gcc-12 | 12.3.0-9ubuntu2 | mantic | source
gcc-12 | 12.3.0-17ubuntu1 | noble/universe | source
gcc-12 | 12.3.0-17ubuntu1 | oracular/universe | source
** Changed in: gcc-12 (Ubuntu)
Status: New => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to gcc-10 in Ubuntu.
https://bugs.launchpad.net/bugs/2054343
Title:
CVE-2023-4039: ARM64 GCC
Status in gcc-10 package in Ubuntu:
Fix Released
Status in gcc-11 package in Ubuntu:
Fix Released
Status in gcc-12 package in Ubuntu:
Fix Released
Status in gcc-13 package in Ubuntu:
Fix Released
Status in gcc-9 package in Ubuntu:
New
Status in gcc-10 source package in Focal:
Triaged
Status in gcc-10 source package in Jammy:
Triaged
Status in gcc-11 source package in Jammy:
Triaged
Status in gcc-12 source package in Jammy:
Triaged
Status in gcc-10 source package in Noble:
Fix Released
Status in gcc-11 source package in Noble:
Fix Committed
Status in gcc-12 source package in Noble:
Fix Released
Status in gcc-13 source package in Noble:
Fix Released
Bug description:
See
https://launchpad.net/ubuntu/+source/gcc-10/10.5.0-3ubuntu1/+build/27746786/+files/buildlog_ubuntu-
noble-arm64.gcc-10_10.5.0-3ubuntu1_BUILDING.txt.gz
The above build is supposed to address
https://nvd.nist.gov/vuln/detail/CVE-2023-4039
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/gcc-10/+bug/2054343/+subscriptions
More information about the foundations-bugs
mailing list