Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Libredwg
(Gnu)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 87 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-03-01 | CVE-2023-25222 | A heap-based buffer overflow vulnerability exits in GNU LibreDWG v0.12.5 via the bit_read_RC function at bits.c. | Libredwg | 8.8 | ||
| 2023-06-23 | CVE-2023-36273 | LibreDWG v0.12.5 was discovered to contain a heap buffer overflow via the function bit_calc_CRC at bits.c. | Libredwg | 8.8 | ||
| 2024-01-02 | CVE-2023-26157 | Versions of the package libredwg before 0.12.5.6384 are vulnerable to Denial of Service (DoS) due to an out-of-bounds read involving section->num_pages in decode_r2007.c. | Libredwg | 7.5 | ||
| 2019-03-14 | CVE-2019-9773 | An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a heap-based buffer overflow in the function dwg_decode_eed_data at decode.c for the z dimension. | Libredwg, Backports_sle, Leap | 7.5 | ||
| 2019-03-14 | CVE-2019-9775 | An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is an out-of-bounds read in the function dwg_dxf_BLOCK_CONTROL at dwg.spec. | Libredwg, Backports_sle, Leap | 9.1 | ||
| 2019-03-14 | CVE-2019-9776 | An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a NULL pointer dereference in the function dwg_dxf_LTYPE at dwg.spec (later than CVE-2019-9779). | Libredwg, Backports_sle, Leap | 7.5 | ||
| 2019-03-14 | CVE-2019-9778 | An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a heap-based buffer over-read in the function dwg_dxf_LTYPE at dwg.spec. | Libredwg, Backports_sle, Leap | 7.5 | ||
| 2019-03-14 | CVE-2019-9779 | An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a NULL pointer dereference in the function dwg_dxf_LTYPE at dwg.spec (earlier than CVE-2019-9776). | Libredwg, Backports_sle, Leap | 7.5 | ||
| 2019-03-14 | CVE-2019-9770 | An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a heap-based buffer overflow in the function dwg_decode_eed_data at decode.c for the y dimension. | Libredwg, Backports_sle, Leap | 7.5 | ||
| 2019-03-14 | CVE-2019-9771 | An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a NULL pointer dereference in the function bit_convert_TU at bits.c. | Libredwg, Backports_sle, Leap | 7.5 |