4 matches found
CVE-2023-38583
GTKWave (gtkwave) is affected by CVE-2023-38583 due to a stack-based buffer overflow in the lxt2_rd_expand_integer_to_bits function, exploitable by opening a crafted .lxt2 file. Public advisories indicate the fix is to upgrade GTKWave to a newer upstream version (e.g., 3.3.118 or newer). Debian s...
CVE-2023-38583
A stack-based buffer overflow vulnerability exists in the LXT2 lxt2rdexpandintegertobits function of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...
CVE-2023-38583
A stack-based buffer overflow vulnerability exists in the LXT2 lxt2rdexpandintegertobits function of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...
GTKWave LXT2 lxt2_rd_expand_integer_to_bits stack-based buffer overflow vulnerability
Talos Vulnerability Report TALOS-2023-1827 GTKWave LXT2 lxt2rdexpandintegertobits stack-based buffer overflow vulnerability January 8, 2024 CVE Number CVE-2023-38583 SUMMARY A stack-based buffer overflow vulnerability exists in the LXT2 lxt2rdexpandintegertobits function of GTKWave 3.3.115. A...