[ubuntu/jammy-security] gcc-12 12.3.0-1ubuntu1~22.04.2 (Accepted)
Sudhakar Verma
sudhakar.verma at canonical.com
Tue Aug 19 12:15:43 UTC 2025
gcc-12 (12.3.0-1ubuntu1~22.04.2) jammy-security; urgency=medium
* SECURITY UPDATE: A missed hardening option in -fstack-protector for AArch64
can lead to buffer overflows for dynamically allocated local variables
not being detected. (LP: #2054343)
- d/p/CVE-2023-4039.diff: Address stack protector and stack clash
protection weaknesses on AArch64. Taken from the gcc-12 branch.
- CVE-2023-4039
* Move allocator base to avoid conflict with high-entropy ASLR for x86-64
Linux. Patch taken from LLVM. Fixes ftbfs. (LP: #2107313)
- d/p/lp2107313-asan-allocator-base.diff
* aarch64: Fix loose ldpstp check. (LP: #2116909)
- d/p/lp2116909-aarch64-fix-loose-ldpstp-check.diff
Date: 2025-08-12 03:58:12.992803+00:00
Changed-By: gerald.yang at canonical.com (gerald.yang)
Signed-By: Sudhakar Verma <sudhakar.verma at canonical.com>
https://launchpad.net/ubuntu/+source/gcc-12/12.3.0-1ubuntu1~22.04.2
-------------- next part --------------
Sorry, changesfile not available.
More information about the jammy-changes
mailing list