View at Official alpine advisory, NVD, CVE.org · CVE detail
Freshness: no update timestamp found; verify against the upstream OS advisory manually.
CVE-2023-46045: 1 source package rows (graphviz); 4 state rows across 4 repos (3.17-main, 3.18-main, 3.19-main, 3.20-main); fixed 0, open 4.
Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is typically owned by root.