2 matches found
SUSE CVE-2023-37577
Multiple use-after-free vulnerabilities exist in the VCD getvartoken realloc functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the...
CVE-2023-37577
CVE-2023-37577 covers multiple use-after-free vulnerabilities in GTKWave (GTKWave 3.3.115) affecting the VCD get_vartoken realloc path, specifically when triggered via the vcd2lxt2 conversion, enabling arbitrary code execution if a crafted .vcd file is opened. The impact is local with user intera...