Lucene search

K

Veracode Vulnerability DatabaseVERACODE:34373

HistoryFeb 24, 2022 - 9:04 p.m.

Out-of-Bounds Write

2022-02-2421:04:40

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

11

kicad

out-of-bounds write

vulnerability

gerber viewer

excellon

gcodenumber

parsing

EPSS

0.001

Percentile

48.3%

kicad is vulnerable to out-of-bounds write. A stack-based buffer overflow vulnerability exists in the Gerber Viewer gerber and excellon GCodeNumber parsing functionality of KiCad EDA which allows an attacker to provide a malicious file to trigger this vulnerability.

References

lists.debian.org/debian-lts-announce/2022/05/msg00009.html

lists.debian.org/debian-lts-announce/2022/08/msg00010.html

lists.fedoraproject.org/archives/list/[email protected]/message/5EMCGSSP3FIWCSL2KXVXLF35JYZKZE5Q/

security-tracker.debian.org/tracker/CVE-2022-23946

talosintelligence.com/vulnerability_reports/TALOS-2022-1460

www.debian.org/security/2022/dsa-5214

EPSS

0.001

Percentile

48.3%

Related for VERACODE:34373

prion1 debiancve1 cvelist1 cve1 cnvd1 nvd1 ubuntucve1 talos1 osv3 mageia1 openvas5 debian3 nessus4 fedora1