Known Vulnerabilities for Gcc by Gnu

Listed below are 10 of the newest known vulnerabilities associated with "Gcc" by "Gnu".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-37322 GCC c++filt v2.26 was discovered to contain a use-after-free vulnerability via the component cplus-dem.c. 7.8 - HIGH 2021-11-18 2021-12-16
CVE-2021-3826 Heap/stack buffer overflow in the dlang_lname function in d-demangle.c in libiberty allows attackers to potentially cause a d... 6.5 - MEDIUM 2022-09-01 2024-01-22
CVE-2020-35537 ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further inv... Not Provided 2022-08-31 2023-11-07
CVE-2020-35536 ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further inv... Not Provided 2022-08-31 2023-11-07
CVE-2019-15847 The POWER9 backend in GNU Compiler Collection (GCC) before version 10 could optimize multiple calls of the __builtin_darn int... 7.5 - HIGH 2019-09-02 2020-09-17
CVE-2018-12886 stack_protect_prologue in cfgexpand.c and stack_protect_epilogue in function.c in GNU Compiler Collection (GCC) 4.1 through 8... 8.1 - HIGH 2019-05-22 2020-08-24
CVE-2017-11671 Under certain circumstances, the ix86_expand_builtin function in i386.c in GNU Compiler Collection (GCC) version 4.6, 4.7, 4.... 4 - MEDIUM 2017-07-26 2018-04-12
CVE-2015-5276 The std::random_device class in libstdc++ in the GNU Compiler Collection (aka GCC) before 4.9.4 does not properly handle shor... 5 - MEDIUM 2015-11-17 2019-02-12
CVE-2008-1685 ** DISPUTED ** gcc 4.2.0 through 4.3.0 in GNU Compiler Collection, when casts are not used, considers the sum of a pointer a... 6.8 - MEDIUM 2008-04-06 2023-11-07
CVE-2008-1367 gcc 4.3.x does not generate a cld instruction while compiling functions used for string manipulation such as memcpy and memmo... 7.5 - HIGH 2008-03-17 2023-11-07
Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationGnuGcc9.3.0AllAllAll
ApplicationGnuGcc9.2.0AllAllAll
ApplicationGnuGcc9.1AllAllAll
ApplicationGnuGcc9.0AllAllAll
ApplicationGnuGcc8.4.0AllAllAll
ApplicationGnuGcc8.3AllAllAll
ApplicationGnuGcc8.2AllAllAll
ApplicationGnuGcc8.1AllAllAll
ApplicationGnuGcc8.0AllAllAll
ApplicationGnuGcc7.5.0AllAllAll
ApplicationGnuGcc7.4AllAllAll
ApplicationGnuGcc7.3AllAllAll
ApplicationGnuGcc7.2AllAllAll
ApplicationGnuGcc6.5AllAllAll
ApplicationGnuGcc6.3AllAllAll
ApplicationGnuGcc6.2AllAllAll
ApplicationGnuGcc6.1AllAllAll
ApplicationGnuGcc6.0AllAllAll
ApplicationGnuGcc5.5AllAllAll
ApplicationGnuGcc5.4AllAllAll
Results limited to 20 most recent known configurations
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report