Oval Definition:oval:com.ubuntu.trusty:def:20145044000
Revision Date:2018-03-07Version:1
Title:CVE-2014-5044 on Ubuntu 14.04 LTS (trusty) - low.
Description:Multiple integer overflows in libgfortran might allow remote attackers to execute arbitrary code or cause a denial of service (Fortran application crash) via vectors related to array allocation.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2014-5044
Platform(s):Ubuntu 14.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 14.04 LTS (trusty) is installed.
  • AND Package Information
  • NOT While related to the CVE in some way, the 'gcc-3.3' package in trusty is not affected (note: 'provides libstdc++5 only').
  • OR The 'gcc-4.4' package in trusty is affected and needs fixing.
  • OR The 'gcc-4.6' package in trusty is affected and needs fixing.
  • OR The 'gcc-4.7' package in trusty is affected and needs fixing.
  • OR The 'gcc-4.7-armel-cross' package in trusty is affected and needs fixing.
  • OR The 'gcc-4.7-armhf-cross' package in trusty is affected and needs fixing.
  • OR The 'gcc-4.8' package in trusty is affected and needs fixing.
  • OR The 'gcc-4.8-arm64-cross' package in trusty is affected and needs fixing.
  • OR The 'gcc-4.8-armhf-cross' package in trusty is affected and needs fixing.
  • OR The 'gcc-4.8-powerpc-cross' package in trusty is affected and needs fixing.
  • OR The 'gcc-4.8-ppc64el-cross' package in trusty is affected and needs fixing.
  • OR The 'gcc-arm-linux-androideabi' package in trusty is affected and needs fixing.
  • OR The 'gcc-arm-none-eabi' package in trusty is affected and needs fixing.
  • OR NOT While related to the CVE in some way, the 'gcc-avr' package in trusty is not affected (note: 'provides C/C++ runtimes only').
  • OR NOT While related to the CVE in some way, the 'gcc-defaults' package in trusty is not affected.
  • OR NOT While related to the CVE in some way, the 'gcc-defaults-arm64-cross' package in trusty is not affected.
  • OR NOT While related to the CVE in some way, the 'gcc-defaults-armel-cross' package in trusty is not affected.
  • OR NOT While related to the CVE in some way, the 'gcc-defaults-armhf-cross' package in trusty is not affected.
  • OR NOT While related to the CVE in some way, the 'gcc-defaults-powerpc-cross' package in trusty is not affected.
  • OR NOT While related to the CVE in some way, the 'gcc-defaults-ppc64el-cross' package in trusty is not affected.
  • OR NOT While related to the CVE in some way, the 'gcc-h8300-hms' package in trusty is not affected (note: 'provides C/C++ runtimes only').
  • OR NOT While related to the CVE in some way, the 'gcc-i686-linux-android' package in trusty is not affected (note: 'provides C/C++ toolchain only').
  • OR NOT While related to the CVE in some way, the 'gcc-m68hc1x' package in trusty is not affected (note: 'provides C runtime only').
  • OR The 'gcc-mingw-w64' package in trusty is affected and needs fixing.
  • OR NOT While related to the CVE in some way, the 'gcc-msp430' package in trusty is not affected (note: 'provides C/C++ runtimes only').
  • OR NOT While related to the CVE in some way, the 'gcc-opt' package in trusty is not affected.
  • OR The 'gcc-snapshot' package in trusty is affected and needs fixing.
  • OR NOT While related to the CVE in some way, the 'gccgo-4.9' package in trusty is not affected.
  • OR NOT While related to the CVE in some way, the 'gccgo-go' package in trusty is not affected.
    • BACK