CVE-2019-7560

Name of the Vulnerable Software and Affected Versions Boolector version 3.0.0

Description The issue arises in the parser/btorsmt2.c file of Boolector, where opening a specially crafted input file can lead to a use after free error in the get failed assumptions or btor delete functions.

Recommendations For Boolector version 3.0.0, consider avoiding the use of specially crafted input files until a patch is available. As a temporary workaround, restrict access to the get failed assumptions and btor delete functions to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.