CVE-2023-35958 in GTKWave
Sumário
de MITRE • 08/01/2024
Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 VCDATA parsing functionality of GTKWave 3.3.115. A specially-crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the copy function `fstFread`.
If you want to get best quality of vulnerability data, you may have to visit VulDB.