N/A

gcc 4.2.0 through 4.3.0 in GNU Compiler Collection, when casts are not used, considers the sum of a pointer and an int to be greater than or equal to the pointer, which might lead to removal of length testing code that was intended as a protection mechanism against integer overflow and buffer overflow attacks, and provide no diagnostic message about this removal. NOTE: the vendor has determined that this compiler behavior is correct according to section 6.5.6 of the C99 standard (aka ISO/IEC 9899:1999)

N/A

N/A

GNU Compiler Collection gcc缓冲区溢出漏洞

当转换未被使用时，GNU Compiler Collection中的gcc 4.2.0至4.3.0版本认为一个指针和整数的总和大于等于该指针，这可能会导致删除长度测试代码。该代码被当做阻止整数溢出和缓冲区溢出攻击的保护机制，并不提供关于此删除的诊断消息。

N/A

N/A