Package "gdb"

Name: gdb


GNU Debugger

Latest version: 9.2-0ubuntu1~20.04.2
Release: focal (20.04)
Level: security
Repository: main
Homepage: http://www.gnu.org/s/gdb/


Download "gdb"

Other versions of "gdb" in Focal

Repository Area Version
base universe 9.1-0ubuntu1
base main 9.1-0ubuntu1
security universe 9.2-0ubuntu1~20.04.2
updates universe 9.2-0ubuntu1~20.04.2
updates main 9.2-0ubuntu1~20.04.2

Packages in group

Deleted packages are displayed in grey.


Version: 9.2-0ubuntu1~20.04.2 2024-06-20 08:07:10 UTC

  gdb (9.2-0ubuntu1~20.04.2) focal-security; urgency=low

  * SECURITY UPDATE: stack buffer overflow
    - debian/patches/CVE-2023-39128.patch: Avoid buffer overflow in
    - CVE-2023-39128
  * SECURITY UPDATE: use after free
    - debian/patches/CVE-2023-39129-1.patch: Verify COFF symbol
      stringtab offset
    - debian/patches/CVE-2023-39129-2.patch: Fix gdb/coffread.c build on
      32bit architectures
    - debian/patches/CVE-2023-39129-3.patch: Use hex_string in
      gdb/coffread.c instead of PRIxPTR
    - CVE-2023-39129
  * SECURITY UPDATE: heap buffer overflow
    - debian/patches/CVE-2023-39130.patch: gdb: warn unused result for
      bfd IO functions
    - CVE-2023-39130

 -- Bruce Cable <email address hidden> Thu, 13 Jun 2024 12:43:41 +1000

CVE-2023-39128 GNU gdb (GDB) was discovered to contain a stack overflow via the function ada_decode at /gdb/ada-lang.c.
CVE-2023-39129 GNU gdb (GDB) was discovered to contain a heap use after free via the function add_pe_exported_sym() at /gdb/coff-pe-read.c.
CVE-2023-39130 GNU gdb (GDB) was discovered to contain a heap buffer overflow via the function pe_as16() at /gdb/coff-pe-read.c.

About   -   Send Feedback to @ubuntu_updates