{"id":"CVE-2023-4508","summary":"Denial of Service in Gerbv","details":"A user able to control file input to Gerbv, between versions 2.4.0 and 2.10.0, can cause a crash and cause denial-of-service with a specially crafted Gerber RS-274X file.","modified":"2026-05-18T05:56:45.269056773Z","published":"2023-08-24T22:51:47.669Z","related":["openSUSE-SU-2024:13474-1"],"database_specific":{"cna_assigner":"canonical","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/4xxx/CVE-2023-4508.json","cwe_ids":["CWE-824"]},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/4xxx/CVE-2023-4508.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-4508"},{"type":"REPORT","url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4508"},{"type":"REPORT","url":"https://github.com/gerbv/gerbv/issues/191"},{"type":"FIX","url":"https://github.com/gerbv/gerbv/commit/5517e22250e935dc7f86f64ad414aeae3dbcb36a"},{"type":"PACKAGE","url":"https://github.com/gerbv/gerbv"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/gerbv/gerbv","events":[{"introduced":"67e1c901d52bba817bf45adab9a69e507094dd10"},{"fixed":"037b94b1e4755f9a39e712563c52144159e9bf3e"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-4508.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}