CVE-2017-11671
gcc: GCC generates incorrect code for RDRAND/RDSEED intrinsics
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Under certain circumstances, the ix86_expand_builtin function in i386.c in GNU Compiler Collection (GCC) version 4.6, 4.7, 4.8, 4.9, 5 before 5.5, and 6 before 6.4 will generate instruction sequences that clobber the status flag of the RDRAND and RDSEED intrinsics before it can be read, potentially causing failures of these instructions to go unreported. This could potentially lead to less randomness in random number generation.
Bajo ciertas circunstancias, la función ix86_expand_builtin en el archivo i386.c en GNU Compiler Collection (GCC) versiones 4.6, 4.7, 4.8, 4.9, versión 5 anterior a 5.5 y versión 6 anterior a 6.4, generará secuencias de instrucciones que marcarán el flag status de los intrínsecos RDRAND y RDSEED antes de que se pueda leer, es posible que no se denuncien los fallos de estas instrucciones. Esto podría potencialmente conllevar a una menor aleatoriedad en la generación de números aleatorios.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2017-07-26 CVE Reserved
- 2017-07-26 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-338: Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://openwall.com/lists/oss-security/2017/07/27/2 | Mailing List | |
| http://www.securityfocus.com/bid/100018 | Third Party Advisory | |
| https://gcc.gnu.org/ml/gcc-patches/2017-03/msg01349.html | Mailing List |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://access.redhat.com/errata/RHSA-2018:0849 | 2018-04-12 | |
| https://gcc.gnu.org/bugzilla/show_bug.cgi?id=80180 | 2018-04-12 | |
| https://access.redhat.com/security/cve/CVE-2017-11671 | 2018-04-10 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=1475733 | 2018-04-10 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Gnu Search vendor "Gnu" | Gcc Search vendor "Gnu" for product "Gcc" | 4.6 Search vendor "Gnu" for product "Gcc" and version "4.6" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Gcc Search vendor "Gnu" for product "Gcc" | 4.7 Search vendor "Gnu" for product "Gcc" and version "4.7" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Gcc Search vendor "Gnu" for product "Gcc" | 4.8 Search vendor "Gnu" for product "Gcc" and version "4.8" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Gcc Search vendor "Gnu" for product "Gcc" | 4.9 Search vendor "Gnu" for product "Gcc" and version "4.9" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Gcc Search vendor "Gnu" for product "Gcc" | 5.0 Search vendor "Gnu" for product "Gcc" and version "5.0" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Gcc Search vendor "Gnu" for product "Gcc" | 5.1 Search vendor "Gnu" for product "Gcc" and version "5.1" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Gcc Search vendor "Gnu" for product "Gcc" | 5.2 Search vendor "Gnu" for product "Gcc" and version "5.2" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Gcc Search vendor "Gnu" for product "Gcc" | 5.3 Search vendor "Gnu" for product "Gcc" and version "5.3" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Gcc Search vendor "Gnu" for product "Gcc" | 5.4 Search vendor "Gnu" for product "Gcc" and version "5.4" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Gcc Search vendor "Gnu" for product "Gcc" | 6.0 Search vendor "Gnu" for product "Gcc" and version "6.0" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Gcc Search vendor "Gnu" for product "Gcc" | 6.1 Search vendor "Gnu" for product "Gcc" and version "6.1" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Gcc Search vendor "Gnu" for product "Gcc" | 6.2 Search vendor "Gnu" for product "Gcc" and version "6.2" | - |
Affected
| ||||||
| Gnu Search vendor "Gnu" | Gcc Search vendor "Gnu" for product "Gcc" | 6.3 Search vendor "Gnu" for product "Gcc" and version "6.3" | - |
Affected
| ||||||