CVE-2023-39129
published 2023-07-25CVE-2023-39129: GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap use after free via the function add_pe_exported_sym() at /gdb/coff-pe-read.c.
medium5.5CVSS 3.1
AVLACLPRNUIRSUCNINAH
GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap use after free via the function add_pe_exported_sym() at /gdb/coff-pe-read.c.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | gdb | — | — |
| gnu | gdb | — | — |
| gnu | gdb | >= 0 < 9.2-0ubuntu1~20.04.2 | 9.2-0ubuntu1~20.04.2 |
| gnu | gdb | >= 0 < 12.1-0ubuntu1~22.04.2 | 12.1-0ubuntu1~22.04.2 |
| gnu | gdb | >= 0 < 7.11.1-0ubuntu1~16.5+esm1 | 7.11.1-0ubuntu1~16.5+esm1 |
| gnu | gdb | >= 0 < 8.1.1-0ubuntu1+esm1 | 8.1.1-0ubuntu1+esm1 |
| msrc | azl3_crash_8.0.4-3_on_azure_linux_3.0 | — | — |
| msrc | azl3_crash_8.0.4-4_on_azure_linux_3.0 | — | — |
| msrc | azl3_gdb_13.2-3_on_azure_linux_3.0 | — | — |
| msrc | azl3_gdb_13.2-4_on_azure_linux_3.0 | — | — |
| msrc | azure_linux_3.0_arm | — | — |
| msrc | azure_linux_3.0_x64 | — | — |
| msrc | cbl2_crash_8.0.1-3_on_cbl_mariner_2.0 | — | — |
| msrc | cbl2_gdb_11.2-3_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
osv5.5MEDIUM