{"id":"USN-5770-1","summary":"gcc-5, gccgo-6 vulnerability","details":"Todd Eisenberger discovered that certain versions of GNU Compiler\nCollection (GCC) could be made to clobber the status flag of RDRAND\nand RDSEED with specially crafted input. This could potentially lead\nto less randomness in random number generation.\n","modified":"2026-04-27T16:27:01.331412Z","published":"2022-12-08T20:18:42Z","related":["UBUNTU-CVE-2017-11671"],"upstream":["CVE-2017-11671","UBUNTU-CVE-2017-11671"],"references":[{"type":"ADVISORY","url":"https://ubuntu.com/security/notices/USN-5770-1"},{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2017-11671"}],"affected":[{"package":{"name":"gcc-5","ecosystem":"Ubuntu:Pro:16.04:LTS","purl":"pkg:deb/ubuntu/gcc-5@5.4.0-6ubuntu1~16.04.12+esm2?arch=source&distro=esm-infra/xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"5.4.0-6ubuntu1~16.04.12+esm2"}]}],"versions":["5.2.1-22ubuntu2","5.2.1-22ubuntu5","5.2.1-23ubuntu1","5.2.1-26ubuntu1","5.2.1-27ubuntu1","5.3.1-2ubuntu2","5.3.1-3ubuntu1","5.3.1-3ubuntu3","5.3.1-4ubuntu1","5.3.1-5ubuntu1","5.3.1-5ubuntu2","5.3.1-5ubuntu3","5.3.1-6ubuntu1","5.3.1-6ubuntu2","5.3.1-7ubuntu1","5.3.1-8ubuntu2","5.3.1-8ubuntu3","5.3.1-9ubuntu3","5.3.1-10ubuntu2","5.3.1-11ubuntu1","5.3.1-12ubuntu1","5.3.1-12ubuntu2","5.3.1-12ubuntu4","5.3.1-13ubuntu1","5.3.1-13ubuntu3","5.3.1-13ubuntu4","5.3.1-13ubuntu6","5.3.1-14ubuntu2","5.3.1-14ubuntu2.1","5.4.0-6ubuntu1~16.04.1","5.4.0-6ubuntu1~16.04.2","5.4.0-6ubuntu1~16.04.4","5.4.0-6ubuntu1~16.04.5","5.4.0-6ubuntu1~16.04.6","5.4.0-6ubuntu1~16.04.9","5.4.0-6ubuntu1~16.04.10","5.4.0-6ubuntu1~16.04.11","5.4.0-6ubuntu1~16.04.12"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro","binaries":[{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"cpp-5"},{"binary_version":"1:5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"fixincludes"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"g++-5"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"g++-5-multilib"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gcc-5"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gcc-5-base"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gcc-5-hppa64-linux-gnu"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gcc-5-locales"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gcc-5-multilib"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gcc-5-source"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gcc-5-test-results"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gccgo-5"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gccgo-5-multilib"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gcj-5"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gcj-5-jdk"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gcj-5-jre"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gcj-5-jre-headless"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gcj-5-jre-lib"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gcj-5-source"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gdc-5"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gdc-5-multilib"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gfortran-5"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gfortran-5-multilib"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gnat-5"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gnat-5-sjlj"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gobjc++-5"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gobjc++-5-multilib"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gobjc-5"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"gobjc-5-multilib"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib32asan2"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib32atomic1"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib32cilkrts5"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib32gfortran3"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib32go7"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib32gomp1"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib32itm1"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib32lsan0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib32mpx0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib32objc4"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib32quadmath0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib32stdc++6"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib32ubsan0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib64asan2"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib64atomic1"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib64cilkrts5"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib64gfortran3"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib64go7"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib64gomp1"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib64itm1"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib64mpx0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib64objc4"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib64quadmath0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib64stdc++6"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"lib64ubsan0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libasan2"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libatomic1"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libcc1-0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libcilkrts5"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libgccjit0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libgcj16"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libgcj16-awt"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libgfortran3"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libgnat-5"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libgnatprj5"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libgnatvsn5"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libgo7"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libgomp1"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libitm1"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"liblsan0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libmpx0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libobjc4"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libquadmath0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libsfasan2"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libsfatomic1"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libsfgfortran3"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libsfgomp1"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libsfobjc4"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libsfstdc++6"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libsfubsan0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libstdc++-5-pic"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libstdc++6"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libtsan0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libubsan0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libx32asan2"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libx32atomic1"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libx32cilkrts5"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libx32gfortran3"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libx32go7"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libx32gomp1"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libx32itm1"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libx32lsan0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libx32objc4"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libx32quadmath0"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libx32stdc++6"},{"binary_version":"5.4.0-6ubuntu1~16.04.12+esm2","binary_name":"libx32ubsan0"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:Pro:16.04:LTS","cves":[{"id":"CVE-2017-11671","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"type":"Ubuntu","score":"low"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-5770-1.json"}},{"package":{"name":"gccgo-6","ecosystem":"Ubuntu:Pro:16.04:LTS","purl":"pkg:deb/ubuntu/gccgo-6@6.0.1-0ubuntu1+esm1?arch=source&distro=esm-infra/xenial"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.0.1-0ubuntu1+esm1"}]}],"versions":["6-20160210-0ubuntu2","6-20160217-0ubuntu1","6-20160220-0ubuntu1","6-20160225-0ubuntu1","6-20160225-0ubuntu2","6-20160227-0ubuntu1","6-20160313-0ubuntu1","6-20160319-0ubuntu1","6-20160405-0ubuntu1","6-20160405-0ubuntu2","6.0.1-0ubuntu1"],"ecosystem_specific":{"availability":"Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro","binaries":[{"binary_version":"6.0.1-0ubuntu1+esm1","binary_name":"gcc-6-base"},{"binary_version":"6.0.1-0ubuntu1+esm1","binary_name":"gccgo-6"},{"binary_version":"6.0.1-0ubuntu1+esm1","binary_name":"gccgo-6-multilib"},{"binary_version":"1:6.0.1-0ubuntu1+esm1","binary_name":"lib32gcc1"},{"binary_version":"6.0.1-0ubuntu1+esm1","binary_name":"lib32go9"},{"binary_version":"1:6.0.1-0ubuntu1+esm1","binary_name":"lib64gcc1"},{"binary_version":"6.0.1-0ubuntu1+esm1","binary_name":"lib64go9"},{"binary_version":"1:6.0.1-0ubuntu1+esm1","binary_name":"libgcc1"},{"binary_version":"6.0.1-0ubuntu1+esm1","binary_name":"libgo9"},{"binary_version":"1:6.0.1-0ubuntu1+esm1","binary_name":"libsfgcc1"},{"binary_version":"1:6.0.1-0ubuntu1+esm1","binary_name":"libx32gcc1"},{"binary_version":"6.0.1-0ubuntu1+esm1","binary_name":"libx32go9"}]},"database_specific":{"cves_map":{"ecosystem":"Ubuntu:Pro:16.04:LTS","cves":[{"id":"CVE-2017-11671","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"type":"Ubuntu","score":"low"}]}]},"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-5770-1.json"}}],"schema_version":"1.7.5"}