CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39270 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-39270
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the LXT2 facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when allocating the `rows` array. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de análisis de facgeometría LXT2 de GTKWave 3.3.115. Un archivo .lxt2 especialmente ... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-34436 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-34436
08 Jan 2024 — An out-of-bounds write vulnerability exists in the LXT2 num_time_table_entries functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability. Existe una vulnerabilidad de escritura fuera de los límites en la funcionalidad LXT2 num_time_table_entries de GTKWave 3.3.115. Un archivo .lxt2 especialmente manipulado puede provocar la ejecución de código arbitrario. • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39317 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-39317
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the LXT2 num_dict_entries functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when allocating the `string_lens` array. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad LXT2 num_dict_entries de GTKWave 3.3.115. Un archivo .lxt2 especialmente manipul... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39316 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-39316
08 Jan 2024 — Multiple integer overflow vulnerabilities exist in the LXT2 num_dict_entries functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer overflow when allocating the `string_pointers` array. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad LXT2 num_dict_entries de GTKWave 3.3.115. Un archivo .lxt2 especialmente man... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-35057 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-35057
08 Jan 2024 — An integer overflow vulnerability exists in the LXT2 lxt2_rd_trace value elements allocation functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to memory corruption. A victim would need to open a malicious file to trigger this vulnerability. Existe una vulnerabilidad de desbordamiento de enteros en la funcionalidad de asignación de elementos de valor LXT2 lxt2_rd_trace de GTKWave 3.3.115. Un archivo .lxt2 especialmente manipulado puede provocar daños en la memoria. • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-35989 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-35989
08 Jan 2024 — An integer overflow vulnerability exists in the LXT2 zlib block allocation functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability. Existe una vulnerabilidad de desbordamiento de enteros en la funcionalidad de asignación de bloques zlib LXT2 de GTKWave 3.3.115. Un archivo .lxt2 especialmente manipulado puede provocar la ejecución de código arbitrario. • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-38657 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-38657
08 Jan 2024 — An out-of-bounds write vulnerability exists in the LXT2 zlib block decompression functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability. Existe una vulnerabilidad de escritura fuera de los límites en la funcionalidad de descompresión de bloques LXT2 zlib de GTKWave 3.3.115. Un archivo .lxt2 especialmente manipulado puede provocar la ejecución de código arbitrario. • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •
CVSS: 7.3EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39414 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-39414
08 Jan 2024 — Multiple integer underflow vulnerabilities exist in the LXT2 lxt2_rd_iter_radix shift operation functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to memory corruption. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer underflow when performing the right shift operation. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de operación de cambio LXT2 lxt2_rd_iter_radix de GTKWave 3.3.115... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39413 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-39413
08 Jan 2024 — Multiple integer underflow vulnerabilities exist in the LXT2 lxt2_rd_iter_radix shift operation functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to memory corruption. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer underflow when performing the left shift operation. Existen múltiples vulnerabilidades de desbordamiento de enteros en la funcionalidad de operación de cambio LXT2 lxt2_rd_iter_radix de GTKWave 3.3.115.... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39444 – Debian Security Advisory 5653-1
https://notcve.org/view.php?id=CVE-2023-39444
08 Jan 2024 — Multiple out-of-bounds write vulnerabilities exist in the LXT2 parsing functionality of GTKWave 3.3.115. A specially-crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the out-of-bounds write perfomed by the string copy loop. Existen múltiples vulnerabilidades de escritura fuera de los límites en la funcionalidad de análisis LXT2 de GTKWave 3.3.115. Un archivo .lxt2 especialmente manipulado puede ... • https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •