CVE-2023-39130

CWE-787Out-of-bounds WriteCWE-119Buffer Overflow7 documents7 sources
Severity
5.5MEDIUM
EPSS
0.0%
top 93.65%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
GNU GDB
Timeline
PublishedJul 25

Description

GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap buffer overflow via the function pe_as16() at /gdb/coff-pe-read.c.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages1 packages

NVDgnu/gdb13.0.50.20220805-git

🔴Vulnerability Details

3
OSV
CVE-2023-39130: GNU gdb (GDB) 132023-07-25
GHSA
GHSA-j6cq-8hw2-r793: GNU gdb (GDB) 132023-07-25
CVEList
CVE-2023-39130: GNU gdb (GDB) 132023-07-25

📋Vendor Advisories

3
Red Hat
gdb: heap-buffer-overflow in pe_as16(void*)2023-07-25
Microsoft
GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap buffer overflow via the function pe_as16() at /gdb/coff-pe-read.c.2023-07-11
Debian
CVE-2023-39130: gdb - GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap buffer overf...2023
CVE-2023-39130 (MEDIUM CVSS 5.5) | GNU gdb (GDB) 13.0.50.20220805-git | cvebase.io