Jump to:

CVE-2015-5276

Jump to:

CVE-2015-5276

Package avr-gcc updated to version 7.2.0-alt1_1 for branch sisyphus in task 220475.

Published: 2015-11-17
Modified: 2024-11-21

CVE-2015-5276

The std::random_device class in libstdc++ in the GNU Compiler Collection (aka GCC) before 4.9.4 does not properly handle short reads from blocking sources, which makes it easier for context-dependent attackers to predict the random values via unspecified vectors.

Severity: MEDIUM (5.0)

References:

openSUSE-SU-2015:1946
openSUSE-SU-2015:1946
openSUSE-SU-2016:1069
openSUSE-SU-2016:1069
1034375
1034375
https://bugzilla.redhat.com/show_bug.cgi?id=1262846
https://bugzilla.redhat.com/show_bug.cgi?id=1262846
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=65142
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=65142

Version: 2.1.0

Package avr-gcc update in sisyphus on 2019-02-04

ALT-PU-2019-1174-1

Closed vulnerabilities

CVE-2015-5276