CVE-2023-38583 Information

Description

A stack-based buffer overflow vulnerability exists in the LXT2 lxt2_rd_expand_integer_to_bits function of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability.

Reference

https://talosintelligence.com/vulnerability_reports/TALOS-2023-1827