{"affected":[{"ecosystem_specific":{"binaries":[{"cpp7":"7.5.0+r278197-150000.4.35.1","gcc7":"7.5.0+r278197-150000.4.35.1","gcc7-c++":"7.5.0+r278197-150000.4.35.1","gcc7-fortran":"7.5.0+r278197-150000.4.35.1","libasan4":"7.5.0+r278197-150000.4.35.1","libcilkrts5":"7.5.0+r278197-150000.4.35.1","libgfortran4":"7.5.0+r278197-150000.4.35.1","libgfortran4-32bit":"7.5.0+r278197-150000.4.35.1","libstdc++6-devel-gcc7":"7.5.0+r278197-150000.4.35.1","libubsan0":"7.5.0+r278197-150000.4.35.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Module for Basesystem 15 SP4","name":"gcc7","purl":"pkg:rpm/suse/gcc7&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.5.0+r278197-150000.4.35.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"cpp7":"7.5.0+r278197-150000.4.35.1","cross-nvptx-gcc7":"7.5.0+r278197-150000.4.35.1","cross-nvptx-newlib7-devel":"7.5.0+r278197-150000.4.35.1","gcc7":"7.5.0+r278197-150000.4.35.1","gcc7-32bit":"7.5.0+r278197-150000.4.35.1","gcc7-ada":"7.5.0+r278197-150000.4.35.1","gcc7-c++":"7.5.0+r278197-150000.4.35.1","gcc7-c++-32bit":"7.5.0+r278197-150000.4.35.1","gcc7-fortran":"7.5.0+r278197-150000.4.35.1","gcc7-fortran-32bit":"7.5.0+r278197-150000.4.35.1","gcc7-info":"7.5.0+r278197-150000.4.35.1","gcc7-locale":"7.5.0+r278197-150000.4.35.1","gcc7-objc":"7.5.0+r278197-150000.4.35.1","libada7":"7.5.0+r278197-150000.4.35.1","libasan4":"7.5.0+r278197-150000.4.35.1","libasan4-32bit":"7.5.0+r278197-150000.4.35.1","libcilkrts5":"7.5.0+r278197-150000.4.35.1","libcilkrts5-32bit":"7.5.0+r278197-150000.4.35.1","libgfortran4":"7.5.0+r278197-150000.4.35.1","libgfortran4-32bit":"7.5.0+r278197-150000.4.35.1","libstdc++6-devel-gcc7":"7.5.0+r278197-150000.4.35.1","libstdc++6-devel-gcc7-32bit":"7.5.0+r278197-150000.4.35.1","libubsan0":"7.5.0+r278197-150000.4.35.1","libubsan0-32bit":"7.5.0+r278197-150000.4.35.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 15 SP1","name":"cross-nvptx-gcc7","purl":"pkg:rpm/suse/cross-nvptx-gcc7&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.5.0+r278197-150000.4.35.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"cpp7":"7.5.0+r278197-150000.4.35.1","cross-nvptx-gcc7":"7.5.0+r278197-150000.4.35.1","cross-nvptx-newlib7-devel":"7.5.0+r278197-150000.4.35.1","gcc7":"7.5.0+r278197-150000.4.35.1","gcc7-32bit":"7.5.0+r278197-150000.4.35.1","gcc7-ada":"7.5.0+r278197-150000.4.35.1","gcc7-c++":"7.5.0+r278197-150000.4.35.1","gcc7-c++-32bit":"7.5.0+r278197-150000.4.35.1","gcc7-fortran":"7.5.0+r278197-150000.4.35.1","gcc7-fortran-32bit":"7.5.0+r278197-150000.4.35.1","gcc7-info":"7.5.0+r278197-150000.4.35.1","gcc7-locale":"7.5.0+r278197-150000.4.35.1","gcc7-objc":"7.5.0+r278197-150000.4.35.1","libada7":"7.5.0+r278197-150000.4.35.1","libasan4":"7.5.0+r278197-150000.4.35.1","libasan4-32bit":"7.5.0+r278197-150000.4.35.1","libcilkrts5":"7.5.0+r278197-150000.4.35.1","libcilkrts5-32bit":"7.5.0+r278197-150000.4.35.1","libgfortran4":"7.5.0+r278197-150000.4.35.1","libgfortran4-32bit":"7.5.0+r278197-150000.4.35.1","libstdc++6-devel-gcc7":"7.5.0+r278197-150000.4.35.1","libstdc++6-devel-gcc7-32bit":"7.5.0+r278197-150000.4.35.1","libubsan0":"7.5.0+r278197-150000.4.35.1","libubsan0-32bit":"7.5.0+r278197-150000.4.35.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 15 SP1","name":"gcc7","purl":"pkg:rpm/suse/gcc7&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP1"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7.5.0+r278197-150000.4.35.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for gcc7 fixes the following issues:\n\nSecurity issue fixed:\n\n- CVE-2023-4039: Fixed incorrect stack protector for C99 VLAs on Aarch64 (bsc#1214052).\n\nOther fixes:\n\n- Fixed KASAN kernel compile.  [bsc#1205145]\n- Fixed ICE with C++17 code as reported in [bsc#1204505]\n- Fixed altivec.h redefining bool in C++ which makes bool unusable (bsc#1195517):\n- Adjust gnats idea of the target, fixing the build of gprbuild.  [bsc#1196861]\n","id":"SUSE-SU-2023:3686-1","modified":"2023-09-19T15:24:52Z","published":"2023-09-19T15:24:52Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20233686-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1195517"},{"type":"REPORT","url":"https://bugzilla.suse.com/1196861"},{"type":"REPORT","url":"https://bugzilla.suse.com/1204505"},{"type":"REPORT","url":"https://bugzilla.suse.com/1205145"},{"type":"REPORT","url":"https://bugzilla.suse.com/1214052"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2023-4039"}],"related":["CVE-2023-4039"],"summary":"Security update for gcc7","upstream":["CVE-2023-4039"]}