Out-of-Bounds Write Vulnerability in Tiny C Compiler 0.9.27

CVE-2019-12495 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:N/A:P

An issue was discovered in Tiny C Compiler (aka TinyCC or TCC) 0.9.27. Compiling a crafted source file leads to a one-byte out-of-bounds write in the gsym_addr function in x86_64-gen.c. This occurs because tccasm.c mishandles section switches.

Learn more about our Web Application Penetration Testing UK.