Vulnerabilities > CVE-2019-12495 - Out-of-bounds Write vulnerability in Tinycc 0.9.27

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL

Summary

An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. Compiling a crafted source file leads to a one-byte out-of-bounds write in the gsym_addr function in x86_64-gen.c. This occurs because tccasm.c mishandles section switches.

Vulnerable Configurations

Part Description Count
Application
Tinycc
1

Common Weakness Enumeration (CWE)