2292165 – (CVE-2024-36699) CVE-2024-36699 gdb: buffer overflow in gdb.selected_inferior().read_memory

Bug 2292165 (CVE-2024-36699) - CVE-2024-36699 gdb: buffer overflow in gdb.selected_inferior().read_memory

Summary: CVE-2024-36699 gdb: buffer overflow in gdb.selected_inferior().read_memory

Keywords:
Status:	CLOSED NOTABUG
Alias:	CVE-2024-36699
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	2292166 2292167 2292168 2292169
Blocks:	2292170
TreeView+	depends on / blocked

Reported:	2024-06-13 09:37 UTC by Mauro Matteo Cascella
Modified:	2024-06-13 15:06 UTC (History)
CC List:	5 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2024-06-13 12:31:34 UTC
Embargoed:

Attachments	(Terms of Use)

Description Mauro Matteo Cascella 2024-06-13 09:37:20 UTC

NVD description: 
GNU Debugger v8.2 to v14.2 was discovered to contain a buffer overflow via the component gdb.selected_inferior().read_memory at utils.c.

References:
https://sourceware.org/pipermail/gdb-patches/2024-April/208019.html
https://nvd.nist.gov/vuln/detail/CVE-2024-36699
https://github.com/N1nEmAn/wp/

Comment 1 Mauro Matteo Cascella 2024-06-13 09:42:37 UTC

Created crash tracking bugs for this issue:

Affects: fedora-all [bug 2292169]


Created gdb tracking bugs for this issue:

Affects: fedora-all [bug 2292166]

Note You need to log in before you can comment on or make changes to this bug.