3 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-37578
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple use-after-free vulnerabilities exist in the VCD getvartoken realloc functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitra...
CVE-2023-37578
GTKWave 3.3.115 contains multiple use-after-free bugs in the VCD get_vartoken realloc path, triggered by malformed .vcd files (notably via vcd2lxt), which can lead to arbitrary code execution. Debian/DSA-5653 and related advisories note these CVEs (including CVE-2023-37578) and fix them by upgrad...
CVE-2023-37578
Multiple use-after-free vulnerabilities exist in the VCD getvartoken realloc functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the...