4 matches found
CVE-2023-37282
GTKWave 3.3.115 is affected by CVE-2023-37282 due to an out-of-bounds write in the VZT LZMA_Read dmem extraction functionality. A specially crafted .vzt file can lead to arbitrary code execution when opened by a user. Several connected advisories confirm GTKWave-related fixes, with upstream/packa...
CVE-2023-37282
An out-of-bounds write vulnerability exists in the VZT LZMARead dmem extraction functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...
PT-2024-12604 · Gtkwave · Gtkwave
Name of the Vulnerable Software and Affected Versions: GTKWave version 3.3.115 Description: An out-of-bounds write issue exists in the VZT LZMA Read dmem extraction functionality. This can be triggered by a specially crafted .vzt file, potentially leading to arbitrary code execution. A victim wou...
GTKWave VZT LZMA_Read dmem extraction out-of-bounds write vulnerability
Talos Vulnerability Report TALOS-2023-1810 GTKWave VZT LZMARead dmem extraction out-of-bounds write vulnerability January 8, 2024 CVE Number CVE-2023-37282 SUMMARY An out-of-bounds write vulnerability exists in the VZT LZMARead dmem extraction functionality of GTKWave 3.3.115. A specially crafted...