VYPR

Mingw W64

by Mingw W64

Source repositories

CVEs (2)

  • CVE-2018-1000101CriMar 6, 2018
    risk 0.64cvss 9.8epss 0.02

    Mingw-w64 version 5.0.3 and earlier, 5.0.4, 6.0.0 and 7.0.0 contains an Improper Null Termination (CWE-170) vulnerability in mingw-w64-crt (libc)->(v)snprintf that can result in The bug may be used to corrupt subsequent string functions. This attack appear to be exploitable via…

  • CVE-2018-5392HigAug 14, 2018
    risk 0.49cvss 7.5epss 0.01

    mingw-w64 version 5.0.4 by default produces executables that opt in to ASLR, but are not compatible with ASLR. ASLR is an exploit mitigation technique used by modern Windows platforms. For ASLR to function, Windows executables must contain a relocations table. Despite containing…