CVE 2014-5044
Multiple integer overflows in libgfortran might allow remote attackers to execute arbitrary code or cause a denial of service (Fortran application crash) via vectors related to array allocation.
Related bugs and status
CVE-2014-5044 (Candidate) is related to these bugs:
Bug #1268893: ICE when building kernel raid6 neon code
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1268893 | ICE when building kernel raid6 neon code | Linaro GCC | Undecided | Fix Released | ||
| 1268893 | ICE when building kernel raid6 neon code | gcc-4.8 (Ubuntu) | Undecided | Fix Released | ||
| 1268893 | ICE when building kernel raid6 neon code | gcc-4.8 (Ubuntu Trusty) | Undecided | Fix Released | ||
Bug #1311128: Please incorporate gcc 4.8 revision 209515
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1311128 | Please incorporate gcc 4.8 revision 209515 | gcc-4.8 (Ubuntu) | Undecided | Fix Released | ||
| 1311128 | Please incorporate gcc 4.8 revision 209515 | gcc-4.8 (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1311128 | Please incorporate gcc 4.8 revision 209515 | gcc-4.8 (Ubuntu Utopic) | Undecided | Fix Released | ||
| 1311128 | Please incorporate gcc 4.8 revision 209515 | gccgo-4.9 (Ubuntu) | Undecided | Invalid | ||
| 1311128 | Please incorporate gcc 4.8 revision 209515 | gccgo-4.9 (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1311128 | Please incorporate gcc 4.8 revision 209515 | gccgo-4.9 (Ubuntu Utopic) | Undecided | Invalid | ||
Bug #1311866: update binutils and GCC for trusty
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1311866 | update binutils and GCC for trusty | gcc-4.8 (Ubuntu Trusty) | Wishlist | Fix Released | ||
| 1311866 | update binutils and GCC for trusty | binutils (Ubuntu Trusty) | Wishlist | Fix Released | ||
| 1311866 | update binutils and GCC for trusty | binutils-arm64-cross (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1311866 | update binutils and GCC for trusty | binutils-armel-cross (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1311866 | update binutils and GCC for trusty | binutils-armhf-cross (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1311866 | update binutils and GCC for trusty | binutils-powerpc-cross (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1311866 | update binutils and GCC for trusty | binutils-ppc64el-cross (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1311866 | update binutils and GCC for trusty | gcc-4.8-arm64-cross (Ubuntu Trusty) | Undecided | New | ||
| 1311866 | update binutils and GCC for trusty | gcc-4.8-armhf-cross (Ubuntu Trusty) | Undecided | New | ||
| 1311866 | update binutils and GCC for trusty | gcc-4.8-powerpc-cross (Ubuntu Trusty) | Undecided | New | ||
| 1311866 | update binutils and GCC for trusty | gcc-4.8-ppc64el-cross (Ubuntu Trusty) | Undecided | New | ||
Bug #1313102: internal compiler error with std::array designated initialization
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1313102 | internal compiler error with std::array designated initialization | gcc-4.8 (Ubuntu) | Low | Fix Released | ||
| 1313102 | internal compiler error with std::array designated initialization | gcc | Medium | New | ||
| 1313102 | internal compiler error with std::array designated initialization | gcc-4.9 (Ubuntu) | Low | Fix Released | ||
| 1313102 | internal compiler error with std::array designated initialization | gccgo-4.9 (Ubuntu) | Undecided | Invalid | ||
| 1313102 | internal compiler error with std::array designated initialization | gcc-4.8 (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1313102 | internal compiler error with std::array designated initialization | gcc-4.9 (Ubuntu Trusty) | Undecided | Invalid | ||
| 1313102 | internal compiler error with std::array designated initialization | gccgo-4.9 (Ubuntu Trusty) | Undecided | Fix Released | ||
Bug #1320292: ABI incompatibility between POWER and Z HTM builtins and intrinsics
Bug #1322287: HTM __builtin_ttest rtl expansion uses wrong shift amount
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1322287 | HTM __builtin_ttest rtl expansion uses wrong shift amount | gcc-4.8 (Ubuntu) | Undecided | Fix Released | ||
| 1322287 | HTM __builtin_ttest rtl expansion uses wrong shift amount | gcc-4.8 (Ubuntu Trusty) | Undecided | Fix Released | ||
Bug #1338693: GCC miscompilation with boost::asio::io_service::work
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1338693 | GCC miscompilation with boost::asio::io_service::work | gcc-4.8 (Ubuntu) | Undecided | Incomplete | ||
| 1338693 | GCC miscompilation with boost::asio::io_service::work | gcc-4.9 (Ubuntu) | Undecided | Fix Released | ||
| 1338693 | GCC miscompilation with boost::asio::io_service::work | gcc-4.8 (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1338693 | GCC miscompilation with boost::asio::io_service::work | gcc-4.9 (Ubuntu Trusty) | Undecided | Invalid | ||
Bug #1347147: krb5 database operations enter infinite loop
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1347147 | krb5 database operations enter infinite loop | krb5 (Ubuntu) | High | Fix Released | ||
| 1347147 | krb5 database operations enter infinite loop | gcc-4.8 (Ubuntu) | Undecided | Fix Released | ||
| 1347147 | krb5 database operations enter infinite loop | gcc | High | Fix Released | ||
| 1347147 | krb5 database operations enter infinite loop | Kerberos | Unknown | Unknown | ||
| 1347147 | krb5 database operations enter infinite loop | gcc-4.8 (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1347147 | krb5 database operations enter infinite loop | krb5 (Ubuntu Trusty) | High | Fix Released | ||
| 1347147 | krb5 database operations enter infinite loop | gcc-4.9 (Ubuntu) | Undecided | Fix Released | ||
Bug #1351227: libwebp ftbfs on arm64
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1351227 | libwebp ftbfs on arm64 | libwebp (Ubuntu) | High | Fix Released | ||
| 1351227 | libwebp ftbfs on arm64 | gcc-4.9 (Ubuntu) | High | Fix Released | ||
| 1351227 | libwebp ftbfs on arm64 | gcc | Wishlist | Invalid | ||
Bug #1360404: -dumpversion output inconsistent with upstream
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1360404 | -dumpversion output inconsistent with upstream | gcc-4.8 (Ubuntu) | Undecided | Won't Fix | ||
| 1360404 | -dumpversion output inconsistent with upstream | gcc-4.6 (Ubuntu) | Undecided | Won't Fix | ||
| 1360404 | -dumpversion output inconsistent with upstream | gcc-4.7 (Ubuntu) | Undecided | Won't Fix | ||
| 1360404 | -dumpversion output inconsistent with upstream | gcc-4.9 (Ubuntu) | Undecided | Fix Released | ||
| 1360404 | -dumpversion output inconsistent with upstream | gccgo-4.9 (Ubuntu) | Undecided | Invalid | ||
| 1360404 | -dumpversion output inconsistent with upstream | gcc-4.6 (Ubuntu Trusty) | Undecided | Won't Fix | ||
| 1360404 | -dumpversion output inconsistent with upstream | gcc-4.7 (Ubuntu Trusty) | Undecided | Won't Fix | ||
| 1360404 | -dumpversion output inconsistent with upstream | gcc-4.8 (Ubuntu Trusty) | Undecided | Won't Fix | ||
| 1360404 | -dumpversion output inconsistent with upstream | gcc-4.9 (Ubuntu Trusty) | Undecided | Invalid | ||
| 1360404 | -dumpversion output inconsistent with upstream | gccgo-4.9 (Ubuntu Trusty) | Undecided | Fix Released | ||
Bug #1361940: patches for cgo on arm64
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1361940 | patches for cgo on arm64 | gcc-4.9 (Ubuntu) | Undecided | Fix Released | ||
| 1361940 | patches for cgo on arm64 | gccgo-4.9 (Ubuntu) | Undecided | Invalid | ||
| 1361940 | patches for cgo on arm64 | gcc-4.9 (Ubuntu Utopic) | Undecided | Fix Released | ||
| 1361940 | patches for cgo on arm64 | gcc-4.9 (Ubuntu Trusty) | Undecided | Invalid | ||
| 1361940 | patches for cgo on arm64 | gccgo-4.9 (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1361940 | patches for cgo on arm64 | gccgo-go (Ubuntu Trusty) | Undecided | New | ||
Bug #1362906: internal compiler error: in comparison, at go/gofrontend/expressions.cc:6508
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1362906 | internal compiler error: in comparison, at go/gofrontend/expressions.cc:6508 | gccgo-4.9 (Ubuntu) | Undecided | Invalid | ||
| 1362906 | internal compiler error: in comparison, at go/gofrontend/expressions.cc:6508 | gcc-4.9 (Ubuntu) | Undecided | Fix Released | ||
| 1362906 | internal compiler error: in comparison, at go/gofrontend/expressions.cc:6508 | gcc-4.9 (Ubuntu Trusty) | Undecided | Invalid | ||
| 1362906 | internal compiler error: in comparison, at go/gofrontend/expressions.cc:6508 | gccgo-4.9 (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1362906 | internal compiler error: in comparison, at go/gofrontend/expressions.cc:6508 | gcc-4.9 (Ubuntu Utopic) | Undecided | Fix Released | ||
| 1362906 | internal compiler error: in comparison, at go/gofrontend/expressions.cc:6508 | gccgo-4.9 (Ubuntu Utopic) | Undecided | Invalid | ||
Bug #1378737: memcpy causes internal compiler error with gcc version 4.8.2
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1378737 | memcpy causes internal compiler error with gcc version 4.8.2 | gcc-4.8 (Ubuntu) | Undecided | Fix Released | ||
| 1378737 | memcpy causes internal compiler error with gcc version 4.8.2 | gcc-4.8 (Ubuntu Trusty) | Undecided | Fix Released | ||
| 1378737 | memcpy causes internal compiler error with gcc version 4.8.2 | gcc-4.8 (Ubuntu Utopic) | Undecided | Fix Released | ||
Bug #1395019: [4.8/4.9 Regression] Infinite loop generated with >=O2
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1395019 | [4.8/4.9 Regression] Infinite loop generated with >=O2 | gcc-4.8 (Ubuntu) | Undecided | Fix Released | ||
| 1395019 | [4.8/4.9 Regression] Infinite loop generated with >=O2 | gcc | Medium | Fix Released | ||
Bug #1401836: -Wno-format ignored in Ubuntu 14.04 release
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1401836 | -Wno-format ignored in Ubuntu 14.04 release | gcc-4.8 (Ubuntu) | Undecided | Fix Released | ||
Bug #1435342: firefox fails to build in trusty-security on arm64
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1435342 | firefox fails to build in trusty-security on arm64 | firefox (Ubuntu) | High | Fix Released | ||
| 1435342 | firefox fails to build in trusty-security on arm64 | firefox (Ubuntu Trusty) | Undecided | New | ||
| 1435342 | firefox fails to build in trusty-security on arm64 | gcc-4.8 (Ubuntu) | Undecided | Fix Released | ||
| 1435342 | firefox fails to build in trusty-security on arm64 | gcc-4.8 (Ubuntu Trusty) | Undecided | Fix Released | ||
Bug #1437467: gcc 4.8: Wrong code for vector doubleword extract
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1437467 | gcc 4.8: Wrong code for vector doubleword extract | gcc-4.8 (Ubuntu) | Undecided | Fix Released | ||
| 1437467 | gcc 4.8: Wrong code for vector doubleword extract | gcc-4.8 (Ubuntu Vivid) | Undecided | Fix Released | ||
| 1437467 | gcc 4.8: Wrong code for vector doubleword extract | gcc-4.8 (Ubuntu Trusty) | Undecided | Fix Released | ||
Bug #1472650: [arm64] gccgo runtime crashes with CONFIG_ARM64_PGTABLE_LEVELS=4
Bug #1577553: Apply gcc-4.8 updates to trusty-security pocket
| Summary | In | Importance | Status | |||
|---|---|---|---|---|---|---|
| 1577553 | Apply gcc-4.8 updates to trusty-security pocket | gcc-4.8 (Ubuntu) | High | Fix Released | ||
| 1577553 | Apply gcc-4.8 updates to trusty-security pocket | binutils (Ubuntu) | High | Fix Released | ||
| 1577553 | Apply gcc-4.8 updates to trusty-security pocket | binutils (Ubuntu Trusty) | High | Fix Released | ||
| 1577553 | Apply gcc-4.8 updates to trusty-security pocket | gcc-4.8 (Ubuntu Trusty) | High | Fix Released | ||
See the 
CVE page on Mitre.org
for more details.
