CVE-2018-12886 — Vulnetix

Try Vulnetix Request Demo

CVE-2018-12886 PUBLISHED

stack_protect_prologue in cfgexpand.c and stack_protect_epilogue in function.c in GNU Compiler Collection (GCC) 4.1 through 8 (under certain circumstances) generate instruction sequences when targeting ARM targets that spill the address of the stack protector guard, which allows an attacker to bypass the protection of -fstack-protector, -fstack-protector-all, -fstack-protector-strong, and -fstack-protector-explicit against stack overflow by controlling what the stack canary is compared against.

EPSS 0.20% · 41.5th percentile

Risk Scores

EPSS Score

0.20%

41.5th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:20.04:LTS	gcc-8	8.4.0-1ubuntu1, 8.4.0-3ubuntu1, 8.4.0-3ubuntu2
Ubuntu:20.04:LTS	gcc-arm-none-eabi	0, 15:8-2019-q3-1, 15:9-2019-q4-0ubuntu1
Ubuntu:16.04:LTS	gcc-4.9	4.9.3-9ubuntu1, 4.9.3-11ubuntu2, 4.9.3-12ubuntu1
Ubuntu:22.04:LTS	gcc-snapshot	0, 1:20220117-1ubuntu1, 1:20210827-1ubuntu1
Ubuntu:20.04:LTS	gcc-7	7.4.0-15ubuntu1, 7.5.0-3ubuntu1, 7.5.0-4ubuntu1
Ubuntu:22.04:LTS	gcc-arm-none-eabi	15:10.3-2021.07-2, 15:10.3-2021.07-4, 15:10.3-2021.07-3
Ubuntu:16.04:LTS	gcc-snapshot	20151011-0ubuntu1, 20151030-1ubuntu2, 20151104-0ubuntu1
Ubuntu:18.04:LTS	gcc-4.8	0, 4.8.5-4ubuntu7, 4.8.5-4ubuntu8
Ubuntu:18.04:LTS	gcc-8	8-20180218-1ubuntu1, 8-20180208-0ubuntu1, 0
Ubuntu:14.04:LTS	gcc-4.8	0, 4.8.1-10ubuntu8, 4.8.2-1ubuntu1
Ubuntu:16.04:LTS	gcc-arm-none-eabi	0, 15:4.9.3+svn231177-1, 15:4.9.3+svn227297-1build1
Ubuntu:24.04:LTS	gcc-snapshot	1:20231130-1ubuntu1, 1:20230928-1ubuntu1, 0
Ubuntu:16.04:LTS	gcc-4.8	4.8.5-2ubuntu1, 4.8.5-3ubuntu1, 4.8.5-3ubuntu2
Ubuntu:18.04:LTS	gcc-7	7.2.0-8ubuntu3, 7.3.0-14ubuntu1, 7.3.0-13ubuntu1
Ubuntu:18.04:LTS	gcc-snapshot	20180130-0ubuntu2, 20180216-1ubuntu1, 1:20180322-1ubuntu1
Ubuntu:24.04:LTS	gcc-arm-none-eabi	15:12.2.rel1-1, 15:13.2.rel1-2, 15:13.2.rel1-1
Ubuntu:18.04:LTS	gcc-6	6.4.0-9ubuntu1, 6.4.0-10ubuntu1, 6.4.0-11ubuntu1
Ubuntu:18.04:LTS	gcc-arm-none-eabi	15:6.3.1+svn253039-1build1, 15:6.3.1+svn253039-1, 15:5.4.1+svn241155-1
Ubuntu:25.10	gcc-snapshot	1:20250921-1ubuntu1, 1:20250804-1ubuntu1, 1:20250828-1ubuntu1
Ubuntu:25.10	gcc-arm-none-eabi	15:14.2.rel1-1, 0

Timeline

May 22, 2019 CVE Published
Apr 14, 2021 EPSS Score
Jun 22, 2021 EPSS Score
Aug 23, 2021 EPSS Score
Oct 24, 2021 EPSS Score
Dec 25, 2021 EPSS Score
Feb 25, 2022 EPSS Score
Apr 28, 2022 EPSS Score
Jun 29, 2022 EPSS Score
Aug 31, 2022 EPSS Score
Nov 1, 2022 EPSS Score
Jan 2, 2023 EPSS Score

References

https://ubuntu.com/security/CVE-2018-12886 third-party-advisory
https://gcc.gnu.org/git/?p=gcc.git;a=commit;h=89d7557202d25a393666ac4c0f7dbdab31e452a2 third-party-advisory
https://www.cve.org/CVERecord?id=CVE-2018-12886 third-party-advisory

Open in Interactive Console →