Summary
| Detail | |||
|---|---|---|---|
| Vendor | Gnu | First view | 2020-07-17 |
| Product | Libredwg | Last view | 2024-01-02 |
| Version | 0.10.1 | Type | Application |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:a:gnu:libredwg | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 7.5 | 2024-01-02 | CVE-2023-26157 | Versions of the package libredwg before 0.12.5.6384 are vulnerable to Denial of Service (DoS) due to an out-of-bounds read involving section->num_pages in decode_r2007.c. |
| 9.8 | 2022-08-18 | CVE-2022-35164 | LibreDWG v0.12.4.4608 & commit f2dea29 was discovered to contain a heap use-after-free via bit_copy_chain. |
| 8.8 | 2022-05-23 | CVE-2021-42586 | A heap buffer overflow was discovered in copy_bytes in decode_r2007.c in dwgread before 0.12.4 via a crafted dwg file. |
| 8.8 | 2022-05-23 | CVE-2021-42585 | A heap buffer overflow was discovered in copy_compressed_bytes in decode_r2007.c in dwgread before 0.12.4 via a crafted dwg file. |
| 6.5 | 2022-01-01 | CVE-2021-45950 | LibreDWG 0.12.4.4313 through 0.12.4.4367 has an out-of-bounds write in dwg_free_BLOCK_private (called from dwg_free_BLOCK and dwg_free_object). |
| 8.8 | 2021-09-20 | CVE-2021-39530 | An issue was discovered in libredwg through v0.10.1.3751. bit_wcs2nlen() in bits.c has a heap-based buffer overflow. |
| 8.8 | 2021-09-20 | CVE-2021-39528 | An issue was discovered in libredwg through v0.10.1.3751. dwg_free_MATERIAL_private() in dwg.spec has a double free. |
| 8.8 | 2021-09-20 | CVE-2021-39527 | An issue was discovered in libredwg through v0.10.1.3751. appinfo_private() in decode.c has a heap-based buffer overflow. |
| 8.8 | 2021-09-20 | CVE-2021-39525 | An issue was discovered in libredwg through v0.10.1.3751. bit_read_fixed() in bits.c has a heap-based buffer overflow. |
| 6.5 | 2021-09-20 | CVE-2021-39523 | An issue was discovered in libredwg through v0.10.1.3751. A NULL pointer dereference exists in the function check_POLYLINE_handles() located in decode.c. It allows an attacker to cause Denial of Service. |
| 8.8 | 2021-09-20 | CVE-2021-39522 | An issue was discovered in libredwg through v0.10.1.3751. bit_wcs2len() in bits.c has a heap-based buffer overflow. |
| 6.5 | 2021-09-20 | CVE-2021-39521 | An issue was discovered in libredwg through v0.10.1.3751. A NULL pointer dereference exists in the function bit_read_BB() located in bits.c. It allows an attacker to cause Denial of Service. |
| 8.8 | 2021-07-01 | CVE-2021-36080 | GNU LibreDWG 0.12.3.4163 through 0.12.3.4191 has a double-free in bit_chain_free (called from dwg_encode_MTEXT and dwg_encode_add_object). |
| 5.5 | 2021-05-18 | CVE-2020-23861 | A heap-based buffer overflow vulnerability exists in LibreDWG 0.10.1 via the read_system_page function at libredwg-0.10.1/src/decode_r2007.c:666:5, which causes a denial of service by submitting a dwg file. |
| 6.5 | 2020-07-17 | CVE-2020-15807 | GNU LibreDWG before 0.11 allows NULL pointer dereferences via crafted input files. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 53% (8) | CWE-787 | Out-of-bounds Write |
| 20% (3) | CWE-476 | NULL Pointer Dereference |
| 13% (2) | CWE-415 | Double Free |
| 6% (1) | CWE-416 | Use After Free |
| 6% (1) | CWE-125 | Out-of-bounds Read |
