DEBIAN-CVE-2008-1367
Advisory lineage Upstream: 1 Downstream: 0
Upstream
Published: 17 Mar 2008, 23:44
Last modified:28 Apr 2026, 20:10
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
17 Mar 2008, 23:44
Published
Vulnerability first disclosed
28 Apr 2026, 20:10
Last Modified
Vulnerability information updated
Description
gcc 4.3.x does not generate a cld instruction while compiling functions used for string manipulation such as memcpy and memmove on x86 and i386, which can prevent the direction flag (DF) from being reset in violation of ABI conventions and cause data to be copied in the wrong direction during signal handling in the Linux kernel, which might allow context-dependent attackers to trigger memory corruption. NOTE: this issue was originally reported for CPU consumption in SBCL.
Affected Systems
- debian•glibc
< 2.7-8 | < 2.7-8 | < 2.7-8 | < 2.7-8