Advisories ยป MGASA-2014-0306

Updated gcc packages fix security vulnerability and other bugs

Publication date: 04 Aug 2014
Modification date: 04 Aug 2014
Type: security
Affected Mageia releases : 3 , 4
CVE: CVE-2014-5044

Description

Updated gcc packages fix the following security issue:
Multiple integer overflow issues were found in libgfortran, the run-time
support library for the Fortran compiler. These could possibly be used to
crash a Fortran application or cause it to execute arbitrary code.
(CVE-2014-5044)

They also fix the following bugs:
The gcc rtl-optimization sched2 miscompiles syscall sequence wich can 
cause random panic in glibc and kernel (gcc/PR61801)

clang++ fails to find cxxabi.h and cxxabi_tweaks.h during build (mga#13543)
                

References

SRPMS

4/core

3/core