PT-2022-12604 · Gnu+4 · Gcc+4

Aidai

Published

2022-01-14

Updated

2024-06-15

CVE-2021-46195

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions GCC version 12.0

Description The issue is related to an uncontrolled recursion in the libiberty/rust-demangle.c component, allowing attackers to cause a Denial of Service (DoS) by consuming excessive CPU and memory resources.

Recommendations For GCC version 12.0, consider disabling the rust-demangle.c component as a temporary workaround until a patch is available. Restrict access to the vulnerable component to minimize the risk of exploitation.

Exploit

Fix

DoS

Uncontrolled Recursion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-674

Related Identifiers

ALSA-2022:8415

CVE-2021-46195

OPENSUSE-SU-2022_4146-1

OPENSUSE-SU-2024:12631-1

RHSA-2022:8415

RHSA-2022_8415

SUSE-SU-2022:4146-1

SUSE-SU-2022:4277-1

Affected Products

Almalinux

Debian

Gcc

Red Hat

Suse

PT-2022-12604 · Gnu+4 · Gcc+4

CVE-2021-46195

Weakness Enumeration

Related Identifiers

Affected Products

References · 46