FortiClient VulnerabilityRedHat gcc-toolset CVE-2021-42574 Code Injection Vulnerability
Description
Annobin provides a compiler plugin to annotate and tools to examine compiled binary files. Security Fix(es): Developer environment: Unicode's bidirectional (BiDi) override characters can cause trojan source attacks (CVE-2021-42574) The following changes were introduced in annobin in order to facilitate detection of BiDi Unicode characters: This update of annobin adds a new annocheck test to detect the presence of multibyte characters in symbol names. For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. SolutionFor details on how to apply this update, which includes the changes described in this advisory, refer to:https://access.redhat.com/articles/11258
Affected Applications
gcc-toolset
CVE References
CVE-2021-42574Other References
https://access.redhat.com/errata/RHSA-2021:4591| ID | 69613 |
| Created | Nov 13, 2021 |
| Description Updated |
Dec 20, 2023 |
| Risk |
|
| Coverage | FortiClient |
| OS | Linux |
| Vendor | RedHat |
| Patch | auto |
| Application | gcc-toolset |