[Bug other/77409] CVE-2016-4973 Targets using libssp for SSP are missing -D_FORTIFY_SOURCE functionality

pinskia at gcc dot gnu.org gcc-bugzilla@gcc.gnu.org
Tue Aug 30 01:53:00 GMT 2016


https://gcc.gnu.org/bugzilla/show_bug.cgi?id=77409

Andrew Pinski <pinskia at gcc dot gnu.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|UNCONFIRMED                 |RESOLVED
         Resolution|---                         |INVALID

--- Comment #7 from Andrew Pinski <pinskia at gcc dot gnu.org> ---
This is a bug in newlib and MinGW (Cygwin and RTEMS uses newlib) rather than in
GCC for not supporting -D_FORTIFY_SOURCE .  ssp should not be the one supplying
this support (it just happens to does not mean it does for all things).


More information about the Gcc-bugs mailing list