From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: by sourceware.org (Postfix, from userid 48) id C3C02385841B; Thu, 28 Sep 2023 14:32:07 +0000 (GMT) DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org C3C02385841B DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sourceware.org; s=default; t=1695911527; bh=YpTf1IXQDenUq8XCubKvBKONUoaPr5HKz4uQkUH3gv8=; h=From:To:Subject:Date:In-Reply-To:References:From; b=iS+V8r9H5xIbGkJDswwtx9eYskfywvGnZj94z7jvBCx+8P67fPgxMeq/9rapMTy9x qZv0I6NQDDjVp4g/Je+qJHKT/ws56XnpIKuQC2U7bm5krvID+JEjR3x2XkrbB32Flm n7L/rtIDN+jy3EQptdXImmJPwBIQtkP/fGjPTgzs= From: "simon.marchi at polymtl dot ca" To: gdb-prs@sourceware.org Subject: =?UTF-8?B?W0J1ZyBnZGIvMzA2NDFdIEFkZHJlc3NTYW5pdGl6ZXI6IGhlYXAt?= =?UTF-8?B?YnVmZmVyLW92ZXJmbG93IC9ob21lL3Jvb3Qvc3AvRGF0YXNldC9CaW51dGls?= =?UTF-8?B?cy9iaW51dGlsc19hZmxwcC9nZGIvY29mZi1wZS1yZWFkLmM6Mjg0OjEwIGlu?= =?UTF-8?B?IHBlX2FzMTYodm9pZCop?= Date: Thu, 28 Sep 2023 14:32:06 +0000 X-Bugzilla-Reason: CC X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: gdb X-Bugzilla-Component: gdb X-Bugzilla-Version: 13.1 X-Bugzilla-Keywords: X-Bugzilla-Severity: normal X-Bugzilla-Who: simon.marchi at polymtl dot ca X-Bugzilla-Status: UNCONFIRMED X-Bugzilla-Resolution: X-Bugzilla-Priority: P2 X-Bugzilla-Assigned-To: unassigned at sourceware dot org X-Bugzilla-Target-Milestone: --- X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: cc Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: http://sourceware.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 List-Id: https://sourceware.org/bugzilla/show_bug.cgi?id=3D30641 Simon Marchi changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |simon.marchi at polymtl do= t ca --- Comment #5 from Simon Marchi --- (In reply to Abdul Basit from comment #4) > Regarding this issue and Bug 30640 there are CVEs linked to both issues. > https://nvd.nist.gov/vuln/detail/CVE-2023-39129 > https://nvd.nist.gov/vuln/detail/CVE-2023-39130 >=20 > @sihan2021 last comment on the ticket is following and afterwards there is > no update:=20 > > Please ignore 30639, 30640, and 30641 bug report. I will use the latest= origin/master gdb with asan to check these bug again. >=20 > Can you please confirm is there any update regarding this as CVEs are sti= ll > open for all these issues and there is no update on these two issues. I= do > not see any new issue link to these CVEs. So if these are not valid issu= es > then it would be helpful to update the related CVEs otherwise if they are > valid issues then to update them with right info about security issue in = gdb > 13.1 >=20 > Thanks They are likely valid issues. If there is no update, it probably means nob= ody has looked into fixing them. --=20 You are receiving this mail because: You are on the CC list for the bug.=