CVE-2023-39070
Description
An issue in Cppcheck 2.12 dev allows a local attacker to execute arbitrary code via the removeContradiction parameter in token.cpp:1934.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Heap use-after-free in Cppcheck 2.12 dev allows local attackers to execute arbitrary code via a crafted file.
Vulnerability
A heap use-after-free vulnerability exists in Cppcheck 2.12 dev (commit d2546d525273c45dfc3bab946e8893b69bb5a542) in the ValueFlow::Value::equalValue function within lib/token.cpp at line 1934. The issue is triggered via the removeContradiction parameter, leading to a read of freed memory [1].
Exploitation
A local attacker must provide a specially crafted input file that triggers the vulnerable code path. The provided PoC file, when checked by the affected version compiled with AddressSanitizer, reproduces the heap-use-after-free condition [1].
Impact
Successful exploitation results in arbitrary code execution at the privilege level of the user running Cppcheck. The vulnerability can lead to control flow hijacking or other adverse effects [1].
Mitigation
As of the available references, no official fix has been released for Cppcheck 2.12 dev. Users are advised to monitor the Cppcheck project for updates or apply patches if available [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
5- Cppcheck/Cppcheckdescription
- osv-coords3 versionspkg:rpm/opensuse/cppcheck&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/cppcheck&distro=openSUSE%20Tumbleweedpkg:rpm/suse/cppcheck&distro=SUSE%20Package%20Hub%2015%20SP5
< 2.12.1-bp155.2.3.1+ 2 more
- (no CPE)range: < 2.12.1-bp155.2.3.1
- (no CPE)range: < 2.12.1-3.1
- (no CPE)range: < 2.12.1-bp155.2.3.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.