VDB
CVE-2018-12886
CVE-2018-12886
PUBLISHED
stack_protect_prologue in cfgexpand.c and stack_protect_epilogue in function.c in GNU Compiler Collection (GCC) 4.1 through 8 (under certain circumstances) generate instruction sequences when targeting ARM targets that spill the address of the stack protector guard, which allows an attacker to bypass the protection of -fstack-protector, -fstack-protector-all, -fstack-protector-strong, and -fstack-protector-explicit against stack overflow by controlling what the stack canary is compared against.
EPSS 0.19% · 41.3th percentile
Risk Scores
EPSS Score
0.19%
41.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:20.04:LTS | gcc-8 | 8.4.0-1ubuntu1, 8.3.0-29ubuntu1, 8.3.0-27ubuntu1 |
| Ubuntu:20.04:LTS | gcc-arm-none-eabi | 15:9-2019-q4-0ubuntu1, 15:8-2019-q3-1, 15:7-2018-q2-6 |
| Ubuntu:16.04:LTS | gcc-4.9 | 4.9.3-9ubuntu1, 4.9.3-11ubuntu1, 4.9.3-11ubuntu2 |
| Ubuntu:22.04:LTS | gcc-snapshot | 0, 1:20220117-1ubuntu1, * |
| Ubuntu:20.04:LTS | gcc-7 | 7.5.0-6ubuntu2, 0, 7.4.0-14ubuntu2 |
| Ubuntu:22.04:LTS | gcc-arm-none-eabi | 15:10.3-2021.07-1, 15:10.3-2021.07-4, 15:10.3-2021.07-3 |
| Ubuntu:16.04:LTS | gcc-snapshot | 20151104-0ubuntu1, 20160105-1ubuntu1, 20151215-0ubuntu1 |
| Ubuntu:18.04:LTS | gcc-4.8 | 4.8.5-4ubuntu8, 4.8.5-4ubuntu7, 0 |
| Ubuntu:18.04:LTS | gcc-8 | 8-20180414-1ubuntu1, 8-20180208-0ubuntu1, 8-20180312-2ubuntu1 |
| Ubuntu:14.04:LTS | gcc-4.8 | 4.8.2-1ubuntu1, 4.8.2-10ubuntu2, 4.8.2-1ubuntu2 |
| Ubuntu:16.04:LTS | gcc-arm-none-eabi | 15:4.9.3+svn227297-1, 15:4.9.3+svn227297-1build1, 15:4.9.3+svn231177-1 |
| Ubuntu:24.04:LTS | gcc-snapshot | 1:20231130-1ubuntu1, 0, 1:20230928-1ubuntu1 |
| Ubuntu:16.04:LTS | gcc-4.8 | 0, 4.8.5-4ubuntu1, 4.8.5-4ubuntu2 |
| Ubuntu:18.04:LTS | gcc-7 | 7.3.0-27ubuntu1~18.04, 0, 7.2.0-8ubuntu3 |
| Ubuntu:18.04:LTS | gcc-snapshot | *, 20180107-1ubuntu1, 1:20180425-1ubuntu1 |
| Ubuntu:24.04:LTS | gcc-arm-none-eabi | 0, 15:12.2.rel1-1, 15:13.2.rel1-1 |
| Ubuntu:18.04:LTS | gcc-6 | 6.4.0-16ubuntu1, 6.4.0-13ubuntu1, 6.4.0-12ubuntu1 |
| Ubuntu:18.04:LTS | gcc-arm-none-eabi | *, 0, 15:5.4.1+svn241155-1 |
| Ubuntu:25.10 | gcc-snapshot | 1:20250921-1ubuntu1, 1:20250828-1ubuntu1, 1:20250804-1ubuntu1 |
| Ubuntu:25.10 | gcc-arm-none-eabi | 0, 15:14.2.rel1-1 |
Exploit Intelligence
- https://www.gnu.org/software/gcc/gcc-8/changes.html (nist-nvd)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
- CVE-2025-38062.yara (github-yara)
Timeline
- May 22, 2019 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 28, 2022 EPSS Score
- May 2, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 5, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2018-12886 third-party-advisory
- https://gcc.gnu.org/git/?p=gcc.git;a=commit;h=89d7557202d25a393666ac4c0f7dbdab31e452a2 third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2018-12886 third-party-advisory