UBUNTU-CVE-2018-12886
- Source
- https://ubuntu.com/security/CVE-2018-12886
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2018/UBUNTU-CVE-2018-12886.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2018-12886
- Related
- Published
- 2019-05-22T19:29:00Z
- Modified
- 2025-04-23T15:01:55Z
- Severity
-
- 8.1 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
stackprotectprologue in cfgexpand.c and stackprotectepilogue in function.c in GNU Compiler Collection (GCC) 4.1 through 8 (under certain circumstances) generate instruction sequences when targeting ARM targets that spill the address of the stack protector guard, which allows an attacker to bypass the protection of -fstack-protector, -fstack-protector-all, -fstack-protector-strong, and -fstack-protector-explicit against stack overflow by controlling what the stack canary is compared against.
- References
Affected packages
Ubuntu:Pro:14.04:LTS / gcc-4.8
Package
- Name
- gcc-4.8
- Purl
- pkg:deb/ubuntu/gcc-4.8@4.8.4-2ubuntu1~14.04.4?arch=source&distro=esm-infra-legacy/trusty
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
4.*
4.8.1-10ubuntu8
4.8.2-1ubuntu1
4.8.2-1ubuntu2
4.8.2-10ubuntu1
4.8.2-10ubuntu2
4.8.2-12ubuntu2
4.8.2-13ubuntu1
4.8.2-14ubuntu1
4.8.2-14ubuntu2
4.8.2-14ubuntu4
4.8.2-15ubuntu3
4.8.2-16ubuntu1
4.8.2-16ubuntu3
4.8.2-16ubuntu4
4.8.2-16ubuntu5
4.8.2-16ubuntu6
4.8.2-17ubuntu1
4.8.2-17ubuntu2
4.8.2-19ubuntu1
4.8.4-2ubuntu1~14.04
4.8.4-2ubuntu1~14.04.1
4.8.4-2ubuntu1~14.04.3
4.8.4-2ubuntu1~14.04.4
Ubuntu:Pro:16.04:LTS / gcc-4.8
Package
- Name
- gcc-4.8
- Purl
- pkg:deb/ubuntu/gcc-4.8@4.8.5-4ubuntu2?arch=source&distro=esm-apps/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:Pro:16.04:LTS / gcc-4.9
Package
- Name
- gcc-4.9
- Purl
- pkg:deb/ubuntu/gcc-4.9@4.9.3-13ubuntu2?arch=source&distro=esm-apps/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:Pro:16.04:LTS / gcc-arm-none-eabi
Package
- Name
- gcc-arm-none-eabi
- Purl
- pkg:deb/ubuntu/gcc-arm-none-eabi@15:4.9.3+svn231177-1?arch=source&distro=esm-apps/xenial
Ubuntu:Pro:16.04:LTS / gcc-snapshot
Package
- Name
- gcc-snapshot
- Purl
- pkg:deb/ubuntu/gcc-snapshot@20160415-0ubuntu1?arch=source&distro=esm-apps/xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:Pro:18.04:LTS / gcc-7
Package
- Name
- gcc-7
- Purl
- pkg:deb/ubuntu/gcc-7@7.5.0-3ubuntu1~18.04?arch=source&distro=esm-infra/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
7.*
7.2.0-8ubuntu3
7.2.0-12ubuntu1
7.2.0-13ubuntu1
7.2.0-16ubuntu1
7.2.0-17ubuntu1
7.2.0-18ubuntu2
7.3.0-3ubuntu1
7.3.0-5ubuntu1
7.3.0-11ubuntu1
7.3.0-12ubuntu1
7.3.0-13ubuntu1
7.3.0-14ubuntu1
7.3.0-15ubuntu2
7.3.0-16ubuntu2
7.3.0-16ubuntu3
7.3.0-27ubuntu1~18.04
7.4.0-1ubuntu1~18.04
7.4.0-1ubuntu1~18.04.1
7.5.0-3ubuntu1~18.04
Ubuntu:Pro:18.04:LTS / gcc-8
Package
- Name
- gcc-8
- Purl
- pkg:deb/ubuntu/gcc-8@8.4.0-1ubuntu1~18.04?arch=source&distro=esm-infra/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
Other
8-20180208-0ubuntu1
8-20180218-1ubuntu1
8-20180312-2ubuntu1
8-20180319-1ubuntu2
8-20180321-1ubuntu1
8-20180331-1ubuntu1
8-20180402-1ubuntu1
8-20180406-0ubuntu1
8-20180408-0ubuntu1
8-20180414-1ubuntu1
8-20180414-1ubuntu2
8.*
8.2.0-1ubuntu2~18.04
8.3.0-6ubuntu1~18.04
8.3.0-6ubuntu1~18.04.1
8.3.0-26ubuntu1~18.04
8.4.0-1ubuntu1~18.04
Ubuntu:Pro:18.04:LTS / gcc-4.8
Package
- Name
- gcc-4.8
- Purl
- pkg:deb/ubuntu/gcc-4.8@4.8.5-4ubuntu8?arch=source&distro=esm-apps/bionic
Ubuntu:Pro:18.04:LTS / gcc-6
Package
- Name
- gcc-6
- Purl
- pkg:deb/ubuntu/gcc-6@6.5.0-2ubuntu1~18.04?arch=source&distro=esm-apps/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:Pro:18.04:LTS / gcc-arm-none-eabi
Package
- Name
- gcc-arm-none-eabi
- Purl
- pkg:deb/ubuntu/gcc-arm-none-eabi@15:6.3.1+svn253039-1build1?arch=source&distro=esm-apps/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:Pro:18.04:LTS / gcc-snapshot
Package
- Name
- gcc-snapshot
- Purl
- pkg:deb/ubuntu/gcc-snapshot@1:20180425-1ubuntu1?arch=source&distro=esm-apps/bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:20.04:LTS / gcc-7
Package
- Name
- gcc-7
- Purl
- pkg:deb/ubuntu/gcc-7@7.5.0-6ubuntu2?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:20.04:LTS / gcc-8
Package
- Name
- gcc-8
- Purl
- pkg:deb/ubuntu/gcc-8@8.4.0-3ubuntu2?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:20.04:LTS / gcc-9
Package
- Name
- gcc-9
- Purl
- pkg:deb/ubuntu/gcc-9@9.3.0-10ubuntu2?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed9.3.0-10ubuntu2
Affected versions
9.*
9.2.1-9ubuntu2
9.2.1-12ubuntu1
9.2.1-15ubuntu1
9.2.1-16ubuntu1
9.2.1-17ubuntu1
9.2.1-19ubuntu1
9.2.1-20ubuntu3
9.2.1-21ubuntu1
9.2.1-25ubuntu1
9.2.1-28ubuntu1
9.2.1-29ubuntu1
9.2.1-30ubuntu1
9.2.1-30ubuntu2
9.2.1-31ubuntu1
9.3.0-3ubuntu1
9.3.0-5ubuntu1
9.3.0-7ubuntu1
9.3.0-8ubuntu1
9.3.0-10ubuntu1
Ecosystem specific
{
"availability": "No subscription required",
"ubuntu_priority": "low",
"binaries": [
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "cpp-9"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "cpp-9-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "cpp-9-doc"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "g++-9"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "g++-9-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "g++-9-multilib"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gcc-9"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gcc-9-base"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gcc-9-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gcc-9-doc"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gcc-9-hppa64-linux-gnu"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gcc-9-hppa64-linux-gnu-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gcc-9-locales"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gcc-9-multilib"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gcc-9-offload-nvptx"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gcc-9-offload-nvptx-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gcc-9-plugin-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gcc-9-plugin-dev-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gcc-9-source"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gcc-9-test-results"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gccbrig-9"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gccbrig-9-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gccgo-9"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gccgo-9-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gccgo-9-doc"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gccgo-9-multilib"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gdc-9"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gdc-9-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gdc-9-multilib"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gfortran-9"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gfortran-9-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gfortran-9-doc"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gfortran-9-multilib"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gm2-9"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gm2-9-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gnat-9"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gnat-9-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gnat-9-doc"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gobjc++-9"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gobjc++-9-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gobjc++-9-multilib"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gobjc-9"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gobjc-9-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "gobjc-9-multilib"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib32asan5"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib32asan5-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib32gcc-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib32gfortran-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib32go-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib32go14"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib32gphobos-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib32gphobos76"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib32gphobos76-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib32objc-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib32stdc++-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib32stdc++6-9-dbg"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib64asan5"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib64asan5-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib64gcc-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib64gfortran-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib64go-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib64go14"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib64gphobos-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib64gphobos76"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib64gphobos76-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib64objc-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib64stdc++-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "lib64stdc++6-9-dbg"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libasan5"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libasan5-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgcc-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgccjit-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgccjit-9-doc"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgfortran-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgm2-0"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgm2-0-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgm2-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgnat-9"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgnat-9-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgnatvsn9"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgnatvsn9-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgnatvsn9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgo-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgo14"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgphobos-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgphobos76"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libgphobos76-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libhsail-rt-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libobjc-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libsfasan5"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libsfasan5-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libsfgcc-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libsfgfortran-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libsfgphobos-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libsfgphobos76"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libsfgphobos76-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libsfobjc-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libsfstdc++-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libsfstdc++6-9-dbg"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libstdc++-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libstdc++-9-doc"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libstdc++-9-pic"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libstdc++6-9-dbg"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libx32asan5"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libx32asan5-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libx32gcc-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libx32gfortran-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libx32go-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libx32go14"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libx32gphobos-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libx32gphobos76"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libx32gphobos76-dbgsym"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libx32objc-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libx32stdc++-9-dev"
},
{
"binary_version": "9.3.0-10ubuntu2",
"binary_name": "libx32stdc++6-9-dbg"
}
]
}
Ubuntu:20.04:LTS / gcc-arm-none-eabi
Package
- Name
- gcc-arm-none-eabi
- Purl
- pkg:deb/ubuntu/gcc-arm-none-eabi@15:9-2019-q4-0ubuntu1?arch=source&distro=focal
Ubuntu:20.04:LTS / gcc-snapshot
Package
- Name
- gcc-snapshot
- Purl
- pkg:deb/ubuntu/gcc-snapshot@1:20200418-1ubuntu1?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1:20200418-1ubuntu1
Ubuntu:22.04:LTS / gcc-arm-none-eabi
Package
- Name
- gcc-arm-none-eabi
- Purl
- pkg:deb/ubuntu/gcc-arm-none-eabi@15:10.3-2021.07-4?arch=source&distro=jammy
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:22.04:LTS / gcc-snapshot
Package
- Name
- gcc-snapshot
- Purl
- pkg:deb/ubuntu/gcc-snapshot@1:20220117-1ubuntu1?arch=source&distro=jammy
Ubuntu:24.10 / gcc-arm-none-eabi
Package
- Name
- gcc-arm-none-eabi
- Purl
- pkg:deb/ubuntu/gcc-arm-none-eabi@15:13.2.rel1-2?arch=source&distro=oracular
Ubuntu:24.10 / gcc-snapshot
Package
- Name
- gcc-snapshot
- Purl
- pkg:deb/ubuntu/gcc-snapshot@1:20241004-1ubuntu1?arch=source&distro=oracular
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:24.04:LTS / gcc-arm-none-eabi
Package
- Name
- gcc-arm-none-eabi
- Purl
- pkg:deb/ubuntu/gcc-arm-none-eabi@15:13.2.rel1-2?arch=source&distro=noble
Ubuntu:24.04:LTS / gcc-snapshot
Package
- Name
- gcc-snapshot
- Purl
- pkg:deb/ubuntu/gcc-snapshot@1:20240117-1ubuntu1?arch=source&distro=noble
Ubuntu:25.04 / gcc-arm-none-eabi
Package
- Name
- gcc-arm-none-eabi
- Purl
- pkg:deb/ubuntu/gcc-arm-none-eabi@15:14.2.rel1-1?arch=source&distro=plucky
Ubuntu:25.04 / gcc-snapshot
Package
- Name
- gcc-snapshot
- Purl
- pkg:deb/ubuntu/gcc-snapshot@1:20250322-1ubuntu1?arch=source&distro=plucky
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected