Oval Definition:oval:com.redhat.rhsa:def:20214587
Revision Date:2021-11-10Version:637
Title:RHSA-2021:4587: gcc security update (Moderate)
Description:The gcc packages provide compilers for C, C++, Java, Fortran, Objective C, and Ada 95 GNU, as well as related support libraries.

Security Fix(es):

  • Developer environment: Unicode's bidirectional (BiDi) override characters can cause trojan source attacks (CVE-2021-42574)

    The following changes were introduced in gcc in order to facilitate detection of BiDi Unicode characters:

    This update implements a new warning option -Wbidirectional to warn about possibly dangerous bidirectional characters.

    There are three levels of warning supported by gcc: "-Wbidirectional=unpaired", which warns about improperly terminated BiDi contexts. (This is the default.) "-Wbidirectional=none", which turns the warning off. "-Wbidirectional=any", which warns about any use of bidirectional characters.

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
  • Family:unixClass:patch
    Status:Reference(s):CVE-2021-42574
    RHSA-2021:4587
    Platform(s):Red Hat Enterprise Linux 8
    Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 8 is installed
  • OR Red Hat CoreOS 4 is installed
  • AND
  • cpp is earlier than 0:8.5.0-4.el8_5
  • AND cpp is signed with Red Hat redhatrelease2 key
  • gcc is earlier than 0:8.5.0-4.el8_5
  • AND gcc is signed with Red Hat redhatrelease2 key
  • gcc-c++ is earlier than 0:8.5.0-4.el8_5
  • AND gcc-c++ is signed with Red Hat redhatrelease2 key
  • gcc-gdb-plugin is earlier than 0:8.5.0-4.el8_5
  • AND gcc-gdb-plugin is signed with Red Hat redhatrelease2 key
  • gcc-gfortran is earlier than 0:8.5.0-4.el8_5
  • AND gcc-gfortran is signed with Red Hat redhatrelease2 key
  • gcc-offload-nvptx is earlier than 0:8.5.0-4.el8_5
  • AND gcc-offload-nvptx is signed with Red Hat redhatrelease2 key
  • gcc-plugin-devel is earlier than 0:8.5.0-4.el8_5
  • AND gcc-plugin-devel is signed with Red Hat redhatrelease2 key
  • libasan is earlier than 0:8.5.0-4.el8_5
  • AND libasan is signed with Red Hat redhatrelease2 key
  • libatomic is earlier than 0:8.5.0-4.el8_5
  • AND libatomic is signed with Red Hat redhatrelease2 key
  • libatomic-static is earlier than 0:8.5.0-4.el8_5
  • AND libatomic-static is signed with Red Hat redhatrelease2 key
  • libgcc is earlier than 0:8.5.0-4.el8_5
  • AND libgcc is signed with Red Hat redhatrelease2 key
  • libgfortran is earlier than 0:8.5.0-4.el8_5
  • AND libgfortran is signed with Red Hat redhatrelease2 key
  • libgomp is earlier than 0:8.5.0-4.el8_5
  • AND libgomp is signed with Red Hat redhatrelease2 key
  • libgomp-offload-nvptx is earlier than 0:8.5.0-4.el8_5
  • AND libgomp-offload-nvptx is signed with Red Hat redhatrelease2 key
  • libitm is earlier than 0:8.5.0-4.el8_5
  • AND libitm is signed with Red Hat redhatrelease2 key
  • libitm-devel is earlier than 0:8.5.0-4.el8_5
  • AND libitm-devel is signed with Red Hat redhatrelease2 key
  • liblsan is earlier than 0:8.5.0-4.el8_5
  • AND liblsan is signed with Red Hat redhatrelease2 key
  • libquadmath is earlier than 0:8.5.0-4.el8_5
  • AND libquadmath is signed with Red Hat redhatrelease2 key
  • libquadmath-devel is earlier than 0:8.5.0-4.el8_5
  • AND libquadmath-devel is signed with Red Hat redhatrelease2 key
  • libstdc++ is earlier than 0:8.5.0-4.el8_5
  • AND libstdc++ is signed with Red Hat redhatrelease2 key
  • libstdc++-devel is earlier than 0:8.5.0-4.el8_5
  • AND libstdc++-devel is signed with Red Hat redhatrelease2 key
  • libstdc++-docs is earlier than 0:8.5.0-4.el8_5
  • AND libstdc++-docs is signed with Red Hat redhatrelease2 key
  • libstdc++-static is earlier than 0:8.5.0-4.el8_5
  • AND libstdc++-static is signed with Red Hat redhatrelease2 key
  • libtsan is earlier than 0:8.5.0-4.el8_5
  • AND libtsan is signed with Red Hat redhatrelease2 key
  • libubsan is earlier than 0:8.5.0-4.el8_5
  • AND libubsan is signed with Red Hat redhatrelease2 key
  • BACK