Vulnerability - CVE-2023-39129

Name

CVE-2023-39129

Source

NVD ( link)Debian ( link)

Description

GNU gdb (GDB) 13.0.50.20220805-git was discovered to contain a heap use after free via the function add_pe_exported_sym() at /gdb/coff-pe-read.c.

CWEs

CWE-416

Published Date

Jul 25, 2023

Updated Date

Jun 17, 2026

Workaround

Advisories

https://sourceware.org/bugzilla/show_bug.cgi?id=30640Issue Tracking

Analysis#

Affected Component

Analysis

Vulnerability Ratings#

5.5

CVSSv31

NaN

other

Others affected components#

Name

Project

Project Version

Version

Status

binutils

buildroot

2025.02.x

2.43.1

Not Affected

binutils

buildroot

master

2.45.1

Not Affected

binutils

openwrt

master

2.46.0-r1

Not Affected

gdb

openwrt

master

16.3-r1

Not Affected

binutils

openwrt

openwrt-25.12

2.45.1-r1

Not Affected

gdb

openwrt

openwrt-25.12

16.3-r1

Not Affected

binutils

yocto

master

2.46.1

Not Affected

gdb

yocto

master

17.2

Not Affected

binutils

yocto

scarthgap

2.42

Not Affected

gdb

yocto

scarthgap

14.2

Not Affected

Resolved with patches#

binutils (yocto:kirkstone)

Title

Author

Resolve

Verify COFF symbol stringtab offset

Keith Seitz <keiths@...>

CVE-2023-39129

gdb (yocto:kirkstone)

Title

Author

Resolve

Verify COFF symbol stringtab offset

Keith Seitz <keiths@...>

CVE-2023-39129