Product:

Libredwg

(Gnu)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 87
Date Id Summary Products Score Patch Annotated
2021-05-17 CVE-2020-21838 A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via: read_2004_section_appinfo ../../src/decode.c:2842. Libredwg 8.8
2021-05-17 CVE-2020-21840 A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bit_search_sentinel ../../src/bits.c:1985. Libredwg 8.8
2021-05-17 CVE-2020-21841 A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bit_read_B ../../src/bits.c:135. Libredwg 8.8
2021-05-17 CVE-2020-21842 A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read_2004_section_revhistory ../../src/decode.c:3051. Libredwg 8.8
2021-05-17 CVE-2020-21843 A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bit_read_RC ../../src/bits.c:318. Libredwg 8.8
2020-07-17 CVE-2020-15807 GNU LibreDWG before 0.11 allows NULL pointer dereferences via crafted input files. Libredwg N/A
2020-07-16 CVE-2019-20915 An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in bit_write_TF in bits.c. Libredwg N/A
2020-07-16 CVE-2019-20914 An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwg_encode_common_entity_handle_data in common_entity_handle_data.spec. Libredwg N/A
2020-07-16 CVE-2019-20913 An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in dwg_encode_entity in common_entity_data.spec. Libredwg N/A
2020-07-16 CVE-2019-20912 An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a stack overflow in bits.c, possibly related to bit_read_TF. Libredwg N/A