CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-38653 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-38653
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the VZT vzt_rd_block_vch_decode dict parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to memory corruption. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when num_time_ticks is zero. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de análisis de dictados VZT vzt_rd_block_vch_decode de GTKWave 3.3.115. Un archiv... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-38652 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-38652
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the VZT vzt_rd_block_vch_decode dict parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to memory corruption. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when num_time_ticks is not zero. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de análisis de dictados VZT vzt_rd_block_vch_decode de GTKWave 3.3.115. Un ar... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-35004 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-35004
08 Jan 2024 — An integer overflow vulnerability exists in the VZT longest_len value allocation functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability. Existe una vulnerabilidad de desbordamiento de enteros en la funcionalidad de asignación de valores VZT long_len de GTKWave 3.3.115. Un archivo .vzt especialmente manipulado puede provocar la ejecución de código arbitrario. • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39235 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-39235
08 Jan 2024 — Multiple out-of-bounds write vulnerabilities exist in the VZT vzt_rd_process_block autosort functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the out-of-bounds write when looping over `lt->num_time_ticks`. Existen múltiples vulnerabilidades de escritura fuera de los límites en la funcionalidad de ordenación automática VZT vzt_rd_process_block de GTKWav... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-129: Improper Validation of Array Index •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39234 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-39234
08 Jan 2024 — Multiple out-of-bounds write vulnerabilities exist in the VZT vzt_rd_process_block autosort functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the out-of-bounds write when looping over `lt->numrealfacs`. Existen múltiples vulnerabilidades de escritura fuera de los límites en la funcionalidad de ordenación automática VZT vzt_rd_process_block de GTKWave 3... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-129: Improper Validation of Array Index •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39275 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-39275
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the LXT2 facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when allocating the `value` array. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de análisis de facgeometría LXT2 de GTKWave 3.3.115. Un archivo .lxt2 especialmente... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39274 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-39274
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the LXT2 facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when allocating the `len` array. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de análisis de facgeometría LXT2 de GTKWave 3.3.115. Un archivo .lxt2 especialmente m... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39273 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-39273
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the LXT2 facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when allocating the `flags` array. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de análisis de facgeometría LXT2 de GTKWave 3.3.115. Un archivo .lxt2 especialmente... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39272 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-39272
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the LXT2 facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when allocating the `lsb` array. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de análisis de facgeometría LXT2 de GTKWave 3.3.115. Un archivo .lxt2 especialmente m... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39271 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-39271
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the LXT2 facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when allocating the `msb` array. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de análisis de facgeometría LXT2 de GTKWave 3.3.115. Un archivo .lxt2 especialmente m... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •