UbuntuUpdates.org

Package "gdb-dbg"

Name: gdb-dbg

Description:

GNU Debugger (debug package)

Latest version: 9.2-0ubuntu1~20.04.2
Release: focal (20.04)
Level: security
Repository: main
Head package: gdb
Homepage: http://www.gnu.org/s/gdb/

Links


Download "gdb-dbg"


Other versions of "gdb-dbg" in Focal

Repository Area Version
base main 9.1-0ubuntu1
updates main 9.2-0ubuntu1~20.04.2

Changelog

Version: 9.2-0ubuntu1~20.04.2 2024-06-20 08:07:10 UTC

  gdb (9.2-0ubuntu1~20.04.2) focal-security; urgency=low

  * SECURITY UPDATE: stack buffer overflow
    - debian/patches/CVE-2023-39128.patch: Avoid buffer overflow in
      ada_decode
    - CVE-2023-39128
  * SECURITY UPDATE: use after free
    - debian/patches/CVE-2023-39129-1.patch: Verify COFF symbol
      stringtab offset
    - debian/patches/CVE-2023-39129-2.patch: Fix gdb/coffread.c build on
      32bit architectures
    - debian/patches/CVE-2023-39129-3.patch: Use hex_string in
      gdb/coffread.c instead of PRIxPTR
    - CVE-2023-39129
  * SECURITY UPDATE: heap buffer overflow
    - debian/patches/CVE-2023-39130.patch: gdb: warn unused result for
      bfd IO functions
    - CVE-2023-39130

 -- Bruce Cable <email address hidden> Thu, 13 Jun 2024 12:43:41 +1000

CVE-2023-39128 GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a stack overflow via the function ada_decode at /gdb/ada-lang.c.
CVE-2023-39129 GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap use after free via the function add_pe_exported_sym() at /gdb/coff-pe-read.c.
CVE-2023-39130 GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap buffer overflow via the function pe_as16() at /gdb/coff-pe-read.c.



About   -   Send Feedback to @ubuntu_updates