Fluid Attacks Database

Description

LLVM a0dab4950 has a segmentation fault in mlir::outlineSingleBlockRegion. NOTE: third parties dispute this because the LLVM security policy excludes "Language front-ends ... for which a malicious input file can cause undesirable behavior."

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version
debian 12	llvm-toolchain-14	=1:14.0.6-12 \|\| =1:14.0.6-12+powerpc \|\| =1:14.0.6-13 \|\| =1:14.0.6-14 \|\| =1:14.0.6-16 \|\| =1:14.0.6-16.1 \|\| =1:14.0.6-16.1~exp1 \|\| =1:14.0.6-17 \|\| =1:14.0.6-18 \|\| =1:14.0.6-19 \|\| =1:14.0.6-20
debian 12	llvm-toolchain-15	=1:15.0.6-4 \|\| =1:15.0.6-5~exp1 \|\| =1:15.0.6-5~exp2 \|\| =1:15.0.6-5~exp3 \|\| =1:15.0.7-1 \|\| =1:15.0.7-1+hurd.1 \|\| =1:15.0.7-10 \|\| =1:15.0.7-10.1~exp1 \|\| =1:15.0.7-11 \|\| =1:15.0.7-11.1 \|\| =1:15.0.7-12 \|\| =1:15.0.7-13 \|\| =1:15.0.7-14 \|\| =1:15.0.7-15 \|\| =1:15.0.7-15+hurd.1 \|\| =1:15.0.7-2 \|\| =1:15.0.7-3 \|\| =1:15.0.7-4 \|\| =1:15.0.7-5 \|\| =1:15.0.7-5~exp1 \|\| =1:15.0.7-6 \|\| =1:15.0.7-7 \|\| =1:15.0.7-8 \|\| =1:15.0.7-9

Aliases

1. CVE-2023-269242. NVD-2023-269243. OSV-DEBIAN-2023-269244. OSV-2023-269245. SECURITY-TRACKER-CVE-2023-26924

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.