Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DLA-3785-1:394C9
HistoryApr 09, 2024 - 8:24 p.m.

[SECURITY] [DLA 3785-1] gtkwave security update

2024-04-0920:24:24
lists.debian.org
3
cve-2023
debian
gtkwave

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.9%

JSON

Debian LTS Advisory DLA-3785-1 [email protected]
https://www.debian.org/lts/security/ Adrian Bunk
April 09, 2024 https://wiki.debian.org/LTS

Package : gtkwave
Version : 3.3.98+really3.3.118-0+deb10u1
CVE ID : CVE-2023-32650 CVE-2023-34087 CVE-2023-34436 CVE-2023-35004
CVE-2023-35057 CVE-2023-35128 CVE-2023-35702 CVE-2023-35703
CVE-2023-35704 CVE-2023-35955 CVE-2023-35956 CVE-2023-35957
CVE-2023-35958 CVE-2023-35959 CVE-2023-35960 CVE-2023-35961
CVE-2023-35962 CVE-2023-35963 CVE-2023-35964 CVE-2023-35969
CVE-2023-35970 CVE-2023-35989 CVE-2023-35992 CVE-2023-35994
CVE-2023-35995 CVE-2023-35996 CVE-2023-35997 CVE-2023-36746
CVE-2023-36747 CVE-2023-36861 CVE-2023-36864 CVE-2023-36915
CVE-2023-36916 CVE-2023-37282 CVE-2023-37416 CVE-2023-37417
CVE-2023-37418 CVE-2023-37419 CVE-2023-37420 CVE-2023-37442
CVE-2023-37443 CVE-2023-37444 CVE-2023-37445 CVE-2023-37446
CVE-2023-37447 CVE-2023-37573 CVE-2023-37574 CVE-2023-37575
CVE-2023-37576 CVE-2023-37577 CVE-2023-37578 CVE-2023-37921
CVE-2023-37922 CVE-2023-37923 CVE-2023-38583 CVE-2023-38618
CVE-2023-38619 CVE-2023-38620 CVE-2023-38621 CVE-2023-38622
CVE-2023-38623 CVE-2023-38648 CVE-2023-38649 CVE-2023-38650
CVE-2023-38651 CVE-2023-38652 CVE-2023-38653 CVE-2023-38657
CVE-2023-39234 CVE-2023-39235 CVE-2023-39270 CVE-2023-39271
CVE-2023-39272 CVE-2023-39273 CVE-2023-39274 CVE-2023-39275
CVE-2023-39316 CVE-2023-39317 CVE-2023-39413 CVE-2023-39414
CVE-2023-39443 CVE-2023-39444
Debian Bug : 1060407

Multiple security issues have been fixed in the waveform viewer GTKWave
by upgrading to a more recent upstream version.

For Debian 10 buster, these problems have been fixed in version
3.3.98+really3.3.118-0+deb10u1.

We recommend that you upgrade your gtkwave packages.

For the detailed security status of gtkwave please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/gtkwave

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

OSVersionArchitecturePackageVersionFilename
Debian12s390xgtkwave< 3.3.118-0.1~deb12u1gtkwave_3.3.118-0.1~deb12u1_s390x.deb
Debian11amd64gtkwave-dbgsym< 3.3.104+really3.3.118-0+deb11u1gtkwave-dbgsym_3.3.104+really3.3.118-0+deb11u1_amd64.deb
Debian11s390xgtkwave-dbgsym< 3.3.104+really3.3.118-0+deb11u1gtkwave-dbgsym_3.3.104+really3.3.118-0+deb11u1_s390x.deb
Debian11ppc64elgtkwave-dbgsym< 3.3.104+really3.3.118-0+deb11u1gtkwave-dbgsym_3.3.104+really3.3.118-0+deb11u1_ppc64el.deb
Debian10amd64gtkwave< 3.3.98+really3.3.118-0+deb10u1gtkwave_3.3.98+really3.3.118-0+deb10u1_amd64.deb
Debian12arm64gtkwave< 3.3.118-0.1~deb12u1gtkwave_3.3.118-0.1~deb12u1_arm64.deb
Debian11armelgtkwave-dbgsym< 3.3.104+really3.3.118-0+deb11u1gtkwave-dbgsym_3.3.104+really3.3.118-0+deb11u1_armel.deb
Debian11mipselgtkwave-dbgsym< 3.3.104+really3.3.118-0+deb11u1gtkwave-dbgsym_3.3.104+really3.3.118-0+deb11u1_mipsel.deb
Debian12i386gtkwave< 3.3.118-0.1~deb12u1gtkwave_3.3.118-0.1~deb12u1_i386.deb
Debian11mipselgtkwave< 3.3.104+really3.3.118-0+deb11u1gtkwave_3.3.104+really3.3.118-0+deb11u1_mipsel.deb
Rows per page:
1-10 of 431

Related

debian 1
openvas 4
osv 2
fedora 2
nessus 4
talosblog 1
talos 25
veracode 21
cve 24
prion 20
nvd 23
debiancve 27
ubuntucve 25
cvelist 19
cnvd 1
debian
debian
[SECURITY] [DSA 5653-1] gtkwave security update
2024-04-03 18:58:39
openvas
openvas
Debian: Security Advisory (DSA-5653-1)
2024-04-04 00:00:00
Fedora: Security Advisory for gtkwave (FEDORA-2024-c990070fa4)
2024-01-18 00:00:00
Debian: Security Advisory (DLA-3785-1)
2024-04-10 00:00:00
osv
osv
gtkwave - security update
2024-04-09 00:00:00
gtkwave - security update
2024-04-03 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: gtkwave-3.3.118-1.fc39
2024-01-18 01:47:12
[SECURITY] Fedora 38 Update: gtkwave-3.3.118-1.fc38
2024-01-18 01:26:33
nessus
nessus
Debian dsa-5653 : gtkwave - security update
2024-04-03 00:00:00
Debian dla-3785 : gtkwave - security update
2024-04-10 00:00:00
Fedora 39 : gtkwave (2024-2647382c5f)
2024-01-18 00:00:00
talosblog
talosblog
Critical vulnerability in ManageEngine could lead to file creation, dozens of other vulnerabilities disclosed by Talos to start 2024
2024-01-17 17:00:00
talos
talos
GTKWave VCD get_vartoken realloc use-after-free vulnerabilities
2024-01-08 00:00:00
GTKWave VZT facgeometry parsing integer overflow vulnerabilities
2024-01-08 00:00:00
GTKWave VCD var definition section out-of-bounds read vulnerabilities
2024-01-08 00:00:00
veracode
veracode
Integer Overflow
2024-04-07 13:07:10
Out-of-bounds Write
2024-04-07 12:46:01
Use-After-Free
2024-04-16 08:59:11
cve
cve
CVE-2023-35057
2024-01-08 15:15:09
CVE-2023-37419
2024-01-08 15:15:15
CVE-2023-37445
2024-01-08 15:15:16
prion
prion
Integer overflow
2024-01-08 15:15:00
Out-of-bounds
2024-01-08 15:15:00
Cross site scripting
2024-01-08 15:15:00
nvd
nvd
CVE-2023-37282
2024-01-08 15:15:15
CVE-2023-39443
2024-01-08 15:15:24
CVE-2023-37573
2024-01-08 15:15:17
debiancve
debiancve
CVE-2023-37416
2024-01-08 15:15:15
CVE-2023-37417
2024-01-08 15:15:15
CVE-2023-37418
2024-01-08 15:15:15
ubuntucve
ubuntucve
CVE-2023-37419
2024-01-08 00:00:00
CVE-2023-39444
2024-01-08 00:00:00
CVE-2023-38622
2024-01-08 00:00:00
cvelist
cvelist
CVE-2023-37447
2024-01-08 14:47:52
CVE-2023-39444
2024-01-08 14:47:40
CVE-2023-37444
2024-01-08 14:47:52
cnvd
cnvd
GTKWave out-of-bounds write vulnerability (CNVD-2024-04857)
2024-01-11 00:00:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

24.9%

JSON
Related for DEBIAN:DLA-3785-1:394C9
debian1openvas4osv2fedora2nessus4talosblog1talos25veracode21cve24prion20nvd23debiancve27ubuntucve25cvelist19cnvd1