Lucene search
China National Vulnerability DatabaseCNVD-2024-04842HistoryJan 11, 2024 - 12:00 a.m.
GTKWave buffer overflow vulnerability (CNVD-2024-04842)
2024-01-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
4
gtkwave
buffer overflow
vulnerability
arbitrary code execution
lxt2
untrusted input
attacker
exploit
boundary error
EPSS
0.001
Percentile
23.1%
GTKWave is a full-featured, GTK±based waveform viewer from GTKWave. A buffer overflow vulnerability exists in GTKWave version 3.3.115, which stems from a boundary error in the LXT2 lxt2_rd_expand_integer_to_bits function when handling untrusted input, and can be exploited by an attacker to cause arbitrary code execution via a specially crafted .lxt2 file.
Related
cve
cve
CVE-2023-38583
2024-01-08 15:15:19
ubuntucve
ubuntucve
CVE-2023-38583
2024-01-08 00:00:00
cvelist
cvelist
CVE-2023-38583
2024-01-08 14:47:39
nvd
nvd
CVE-2023-38583
2024-01-08 15:15:19
debiancve
debiancve
CVE-2023-38583
2024-01-08 15:15:19
veracode
veracode
Arbitrary Code Execution
2024-04-03 13:02:28
prion
prion
Stack overflow
2024-01-08 15:15:00
talos
talos
openvas
openvas
Fedora: Security Advisory for gtkwave (FEDORA-2024-c990070fa4)
2024-01-18 00:00:00
Debian: Security Advisory (DSA-5653-1)
2024-04-04 00:00:00
Debian: Security Advisory (DLA-3785-1)
2024-04-10 00:00:00
osv
osv
gtkwave - security update
2024-04-09 00:00:00
gtkwave - security update
2024-04-03 00:00:00
debian
debian
[SECURITY] [DSA 5653-1] gtkwave security update
2024-04-03 18:58:39
[SECURITY] [DLA 3785-1] gtkwave security update
2024-04-09 20:24:24
fedora
fedora
[SECURITY] Fedora 39 Update: gtkwave-3.3.118-1.fc39
2024-01-18 01:47:12
[SECURITY] Fedora 38 Update: gtkwave-3.3.118-1.fc38
2024-01-18 01:26:33
nessus
nessus
Debian dla-3785 : gtkwave - security update
2024-04-10 00:00:00
Debian dsa-5653 : gtkwave - security update
2024-04-03 00:00:00