Product:

Libredwg

(Gnu)
Repositories

Unknown:

This might be proprietary software.

#Vulnerabilities 27
Date ID Summary Products Score Patch
2019-12-27 CVE-2019-20015 An issue was discovered in GNU LibreDWG 0.92. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_LWPOLYLINE_private in dwg.spec. Libredwg, Backports_sle, Leap N/A
2019-12-27 CVE-2019-20014 An issue was discovered in GNU LibreDWG before 0.93. There is a double-free in dwg_free in free.c. Libredwg, Backports_sle, Leap N/A
2019-12-27 CVE-2019-20013 An issue was discovered in GNU LibreDWG before 0.93. Crafted input will lead to an attempted excessive memory allocation in decode_3dsolid in dwg.spec. Libredwg, Backports_sle, Leap N/A
2019-12-27 CVE-2019-20012 An issue was discovered in GNU LibreDWG 0.92. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_HATCH_private in dwg.spec. Libredwg, Backports_sle, Leap N/A
2019-12-27 CVE-2019-20011 An issue was discovered in GNU LibreDWG 0.92. There is a heap-based buffer over-read in decode_R13_R2000 in decode.c. Libredwg, Backports_sle, Leap N/A
2019-12-27 CVE-2019-20010 An issue was discovered in GNU LibreDWG 0.92. There is a use-after-free in resolve_objectref_vector in decode.c. Libredwg, Backports_sle, Leap N/A
2019-12-27 CVE-2019-20009 An issue was discovered in GNU LibreDWG before 0.93. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_SPLINE_private in dwg.spec. Libredwg, Backports_sle, Leap N/A
2020-01-08 CVE-2020-6615 GNU LibreDWG 0.9.3.2564 has an invalid pointer dereference in dwg_dynapi_entity_value in dynapi.c (dynapi.c is generated by gen-dynapi.pl). Libredwg N/A
2020-01-08 CVE-2020-6614 GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bfr_read in decode.c. Libredwg N/A
2020-01-08 CVE-2020-6613 GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bit_search_sentinel in bits.c. Libredwg N/A