3 matches found
SUSE CVE-2023-35997
Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability...
CVE-2023-35997
GTKWave (gtkwave) is affected by CVE-2023-35997 in the fstReaderIterBlocks2 tdelta path, with arbitrary code execution when a user opens a crafted .fst file. The vulnerability occurs during tdelta indexing when signal_lens is 2 or more. Debian/DSA-5653 (and related advisories) indicate fixed vers...
CVE-2023-35997
Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability...