cve 2023 39129

CVE-2023-39129 is a heap use-after-free vulnerability in the GNU Debugger (GDB), specifically in the PE/COFF reader path within the function add_pe_exported_sym() in gdb/coff-pe-read.c. This bug can be triggered when GDB processes specially crafted PE/COFF export information, potentially causing the debugger to crash or become unavailable. Multiple vulnerability databases assign a Medium severity, noting the primary impact is on availability rather than confidentiality or integrity. Discussions on WindowsForum highlight that this issue affects even long-standing developer tools when parsing untrusted inputs, serving as a reminder of operational hazards in debugging environments.