Summary
Detail | |||
---|---|---|---|
Vendor | Gnu | First view | 2020-07-17 |
Product | Libredwg | Last view | 2024-01-02 |
Version | 0.10.1 | Type | Application |
Update | * | ||
Edition | * | ||
Language | * | ||
Sofware Edition | * | ||
Target Software | * | ||
Target Hardware | * | ||
Other | * | ||
CPE Product | cpe:2.3:a:gnu:libredwg |
Activity : Overall
Related : CVE
Date | Alert | Description | |
---|---|---|---|
7.5 | 2024-01-02 | CVE-2023-26157 | Versions of the package libredwg before 0.12.5.6384 are vulnerable to Denial of Service (DoS) due to an out-of-bounds read involving section->num_pages in decode_r2007.c. |
9.8 | 2022-08-18 | CVE-2022-35164 | LibreDWG v0.12.4.4608 & commit f2dea29 was discovered to contain a heap use-after-free via bit_copy_chain. |
8.8 | 2022-05-23 | CVE-2021-42586 | A heap buffer overflow was discovered in copy_bytes in decode_r2007.c in dwgread before 0.12.4 via a crafted dwg file. |
8.8 | 2022-05-23 | CVE-2021-42585 | A heap buffer overflow was discovered in copy_compressed_bytes in decode_r2007.c in dwgread before 0.12.4 via a crafted dwg file. |
6.5 | 2022-01-01 | CVE-2021-45950 | LibreDWG 0.12.4.4313 through 0.12.4.4367 has an out-of-bounds write in dwg_free_BLOCK_private (called from dwg_free_BLOCK and dwg_free_object). |
8.8 | 2021-09-20 | CVE-2021-39530 | An issue was discovered in libredwg through v0.10.1.3751. bit_wcs2nlen() in bits.c has a heap-based buffer overflow. |
8.8 | 2021-09-20 | CVE-2021-39528 | An issue was discovered in libredwg through v0.10.1.3751. dwg_free_MATERIAL_private() in dwg.spec has a double free. |
8.8 | 2021-09-20 | CVE-2021-39527 | An issue was discovered in libredwg through v0.10.1.3751. appinfo_private() in decode.c has a heap-based buffer overflow. |
8.8 | 2021-09-20 | CVE-2021-39525 | An issue was discovered in libredwg through v0.10.1.3751. bit_read_fixed() in bits.c has a heap-based buffer overflow. |
6.5 | 2021-09-20 | CVE-2021-39523 | An issue was discovered in libredwg through v0.10.1.3751. A NULL pointer dereference exists in the function check_POLYLINE_handles() located in decode.c. It allows an attacker to cause Denial of Service. |
8.8 | 2021-09-20 | CVE-2021-39522 | An issue was discovered in libredwg through v0.10.1.3751. bit_wcs2len() in bits.c has a heap-based buffer overflow. |
6.5 | 2021-09-20 | CVE-2021-39521 | An issue was discovered in libredwg through v0.10.1.3751. A NULL pointer dereference exists in the function bit_read_BB() located in bits.c. It allows an attacker to cause Denial of Service. |
8.8 | 2021-07-01 | CVE-2021-36080 | GNU LibreDWG 0.12.3.4163 through 0.12.3.4191 has a double-free in bit_chain_free (called from dwg_encode_MTEXT and dwg_encode_add_object). |
5.5 | 2021-05-18 | CVE-2020-23861 | A heap-based buffer overflow vulnerability exists in LibreDWG 0.10.1 via the read_system_page function at libredwg-0.10.1/src/decode_r2007.c:666:5, which causes a denial of service by submitting a dwg file. |
6.5 | 2020-07-17 | CVE-2020-15807 | GNU LibreDWG before 0.11 allows NULL pointer dereferences via crafted input files. |
CWE : Common Weakness Enumeration
% | id | Name |
---|---|---|
53% (8) | CWE-787 | Out-of-bounds Write |
20% (3) | CWE-476 | NULL Pointer Dereference |
13% (2) | CWE-415 | Double Free |
6% (1) | CWE-416 | Use After Free |
6% (1) | CWE-125 | Out-of-bounds Read |