CVE-2006-0635

Publication date 10 February 2006

Last updated 24 July 2024

Ubuntu priority

Tiny C Compiler (TCC) 0.9.23 (aka TinyCC) evaluates the “i>sizeof(int)” expression to false when i equals -1, which might introduce integer overflow vulnerabilities into applications that could be exploited by context-dependent attackers.

Status

Show unmaintained releases

No maintained releases are affected by this CVE.

Package	Ubuntu Release	Status
tcc	9.10 karmic	Fixed 0.9.24~cvs20070502-1
	9.04 jaunty	Fixed 0.9.24~cvs20070502-1
	8.10 intrepid	Fixed 0.9.24~cvs20070502-1
	8.04 LTS hardy	Fixed 0.9.24~cvs20070502-1
	7.10 gutsy	Fixed 0.9.24~cvs20070502-1
	7.04 feisty	Ignored end of life, was needed
	6.10 edgy	Ignored end of life, was needed
	6.06 LTS dapper	Ignored end of life

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2006-0635