CVE-2023-4039MEDIUMCVSS 4.8vAll versions where option -fstack-protector is used2023-09-13
CVE-2023-4039 [MEDIUM] CWE-693 CVE-2023-4039: **DISPUTED**A failure in the -fstack-protector feature in GCC-based toolchains
that target AArch64
**DISPUTED**A failure in the -fstack-protector feature in GCC-based toolchains
that target AArch64 allows an attacker to exploit an existing buffer
overflow in dynamically-sized local variables in your application
without this being detected. This stack-protector failure only applies
to C99-style dynamically-sized local variables or those created using
cvelistv5nvd