Search Tools Links Login

Notepad++ Faces Multiple Buffer Overflow Issues

Posted: 2023-09-06
By: dwirch
Viewed: 98

Filed Under:

News, Security

No attachments for this post


Several Buffer Overflow vulnerabilities have emerged in Notepad++, which could be potentially exploited for harmful intentions. These vulnerabilities range in severity from medium (5.5) to high (7.8).

These vulnerabilities concern heap buffer write and read overflows within specific functions and libraries of the Notepad++ software. GitLab security expert, Jaroslav Lobańćevski (@JarLob), identified them.

For those unfamiliar, Notepad++ is a renowned open-source code editor based on C++, designed for Microsoft's x86, x64, and AArch64 architectures. This software, developed by Don Ho, supports tabbed editing, which facilitates managing multiple files simultaneously in one window.

Despite being alerted, Notepad++ has yet to release any patches. As per their disclosure protocol, GitLab went ahead to disclose these vulnerabilities, providing the related proof-of-concept.

Vulnerability Details

Currently, there's no word on patches from Notepad++. However, GitLab's comprehensive report on these vulnerabilities provides deeper insights, proof-of-concept, sample code, and more.


Comments on this post

No comments have been added for this post.

You must be logged in to make a comment.