Vulnerabilities > CVE-2018-20375 - Out-of-bounds Write vulnerability in Tinycc 0.9.27

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
tinycc
CWE-787

Summary

An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. Compiling a crafted source file leads to an 8 byte out of bounds write in the sym_pop function in tccgen.c.

Vulnerable Configurations

Part Description Count
Application
Tinycc
1

Common Weakness Enumeration (CWE)