CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-38623 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-38623
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the VZT facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when allocating the `vindex_offset` array. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de análisis de facgeometría VZT de GTKWave 3.3.115. Un archivo .vzt especialm... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-38622 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-38622
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the VZT facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when allocating the `len` array. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de análisis de facgeometría VZT de GTKWave 3.3.115. Un archivo .vzt especialmente manip... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-38621 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-38621
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the VZT facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when allocating the `flags` array. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de análisis de facgeometría VZT de GTKWave 3.3.115. Un archivo .vzt especialmente man... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-38620 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-38620
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the VZT facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when allocating the `lsb` array. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de análisis de facgeometría VZT de GTKWave 3.3.115. Un archivo .vzt especialmente manip... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-38619 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-38619
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the VZT facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when allocating the `msb` array. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de análisis de facgeometría VZT de GTKWave 3.3.115. Un archivo .vzt especialmente manip... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-38618 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-38618
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the VZT facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when allocating the `rows` array. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de análisis de facgeometría VZT de GTKWave 3.3.115. Un archivo .vzt especialmente mani... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-38649 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-38649
08 Jan 2024 — Multiple out-of-bounds write vulnerabilities exist in the VZT vzt_rd_get_facname decompression functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the out-of-bounds write perfomed by the string copy loop. Existen múltiples vulnerabilidades de escritura fuera de los límites en la funcionalidad de descompresión VZT vzt_rd_get_facname de GTKWave 3.3.115. Un... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-38648 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-38648
08 Jan 2024 — Multiple out-of-bounds write vulnerabilities exist in the VZT vzt_rd_get_facname decompression functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the out-of-bounds write perfomed by the prefix copy loop. Existen múltiples vulnerabilidades de escritura fuera de los límites en la funcionalidad de descompresión VZT vzt_rd_get_facname de GTKWave 3.3.115. Un... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-38651 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-38651
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the VZT vzt_rd_block_vch_decode times parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to memory corruption. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when num_time_ticks is zero. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de análisis de tiempos VZT vzt_rd_block_vch_decode de GTKWave 3.3.115. Un archiv... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-38650 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-38650
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the VZT vzt_rd_block_vch_decode times parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to memory corruption. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when num_time_ticks is not zero. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de análisis de tiempos VZT vzt_rd_block_vch_decode de GTKWave 3.3.115. Un ar... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •