CVE-2018-5392

Name of the Vulnerable Software and Affected Versions mingw-w64 version 5.0.4

Description The issue concerns the production of Windows executables by mingw-w64 that claim to be compatible with Address Space Layout Randomization (ASLR), an exploit mitigation technique, but lack the necessary relocations table. This discrepancy makes the executables vulnerable to return-oriented programming (ROP) attacks, as they do not fully support ASLR despite containing the "Dynamic base" PE header. ASLR is designed to randomize the location of executables and libraries in memory, making it harder for attackers to predict where their malicious code will be loaded. However, for ASLR to function correctly, executables must include a relocations table, which is stripped by default in mingw-w64 generated executables.

Recommendations For mingw-w64 version 5.0.4, ensure that the relocations table is not stripped from the generated Windows executables to make them truly compatible with ASLR, thereby reducing their vulnerability to ROP attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.