Critical severity9.8NVD Advisory· Published Sep 1, 2023· Updated Jun 17, 2026
CVE-2023-36328
CVE-2023-36328
Description
Integer Overflow vulnerability in mp_grow in libtom libtommath before commit beba892bc0d4e4ded4d667ab1d2a94f4d75109a9, allows attackers to execute arbitrary code and cause a denial of service (DoS).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3(expand)+ 1 more
- (no CPE)
- (no CPE)range: < beba892bc0d4e4ded4d667ab1d2a94f4d75109a9
- osv-coordsRange: < 1.2.0-6ubuntu0.23.10.1
Patches
Vulnerability mechanics
References
5- github.com/libtom/libtommath/pull/546nvdIssue TrackingPatch
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3H2PFUTBKQUDSOJXQQS7LUSZQWT3JTW2/nvdMailing ListThird Party Advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/46GORAXZ34MHQNUGJBKS7PJ5NSMIAJGC/nvdMailing ListThird Party Advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6ZUPWZGPFJ4JOI2NIP7YLRKZD5YXQTBK/nvdMailing ListThird Party Advisory
- lists.debian.org/debian-lts-announce/2024/09/msg00011.htmlnvd
News mentions
0No linked articles in our index yet.