Lucene search
K

938 matches found

NVD
NVD
added 2 days ago6 views

CVE-2026-15520

A vulnerability was determined in GNU LibreDWG 0.13.4-154-g0b573035. This impacts the function decompressR2004section of the file src/decode.c of the component R2004 Section Decompression. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The explo...

5.3CVSS0.00136EPSS
Exploits0References10
CVE
CVE
added 2 days ago13 views

CVE-2026-15520

GNU LibreDWG 0.13.4-154-g0b573035 contains a vulnerability in the function decompress_R2004_section (src/decode.c) that can cause a heap-based buffer overflow . Exploitation requires local access and has been publicly disclosed. The issue affects the R2004 Section Decompression component and is a...

5.3CVSS6.1AI score0.00136EPSS
Exploits0References10
Cvelist
Cvelist
added 2 days ago32 views

CVE-2026-15520 GNU LibreDWG R2004 Section Decompression decode.c decompress_R2004_section heap-based overflow

A vulnerability was determined in GNU LibreDWG 0.13.4-154-g0b573035. This impacts the function decompressR2004section of the file src/decode.c of the component R2004 Section Decompression. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The explo...

5.3CVSS0.00136EPSS
Exploits0References10
OSV
OSV
added 2 days ago3 views

CVE-2026-15520 GNU LibreDWG R2004 Section Decompression decode.c decompress_R2004_section heap-based overflow

A vulnerability was determined in GNU LibreDWG 0.13.4-154-g0b573035. This impacts the function decompressR2004section of the file src/decode.c of the component R2004 Section Decompression. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The explo...

4.8CVSS6AI score0.00136EPSS
Exploits0References12
EUVD
EUVD
added 2 days ago10 views

EUVD-2026-43263

A vulnerability was determined in GNU LibreDWG 0.13.4-154-g0b573035. This impacts the function decompressR2004section of the file src/decode.c of the component R2004 Section Decompression. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The explo...

5.3CVSS6.1AI score0.00136EPSS
Exploits0References10
NVD
NVD
added 6 days ago10 views

CVE-2026-15182

A vulnerability has been found in GNU LibreDWG up to 0.13.4. The affected element is the function dwgbmp of the file src/dwg.c of the component BMP Image Handler. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclosed to the...

5.3CVSS0.00133EPSS
Exploits0References10
OSV
OSV
added 6 days ago3 views

CVE-2026-15184 GNU LibreDWG DWG File dwg.c dwg_next_entity null pointer dereference

A vulnerability was found in GNU LibreDWG up to 0.13.4. The impacted element is the function dwgnextentity of the file src/dwg.c of the component DWG File Handler. Performing a manipulation of the argument nextobj results in null pointer dereference. The attack must be initiated from a local...

4.8CVSS5.6AI score0.00118EPSS
Exploits0References11
Cvelist
Cvelist
added 6 days ago33 views

CVE-2026-15184 GNU LibreDWG DWG File dwg.c dwg_next_entity null pointer dereference

A vulnerability was found in GNU LibreDWG up to 0.13.4. The impacted element is the function dwgnextentity of the file src/dwg.c of the component DWG File Handler. Performing a manipulation of the argument nextobj results in null pointer dereference. The attack must be initiated from a local...

4.8CVSS0.00118EPSS
Exploits0References9
EUVD
EUVD
added 6 days ago7 views

EUVD-2026-42581

A vulnerability was found in GNU LibreDWG up to 0.13.4. The impacted element is the function dwgnextentity of the file src/dwg.c of the component DWG File Handler. Performing a manipulation of the argument nextobj results in null pointer dereference. The attack must be initiated from a local...

4.8CVSS5.5AI score0.00118EPSS
Exploits0References9
CVE
CVE
added 6 days ago12 views

CVE-2026-15184

CVE-2026-15184 affects GNU LibreDWG up to 0.13.4. The vulnerable element is the function dwg_next_entity in src/dwg.c of the DWG File Handler. Manipulating the argument next_obj can cause a null pointer dereference . The attack must come from a local position and an exploit has been made public. ...

4.8CVSS5.5AI score0.00118EPSS
Exploits0References9
Cvelist
Cvelist
added 6 days ago36 views

CVE-2026-15182 GNU LibreDWG BMP Image dwg.c dwg_bmp heap-based overflow

A vulnerability has been found in GNU LibreDWG up to 0.13.4. The affected element is the function dwgbmp of the file src/dwg.c of the component BMP Image Handler. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclosed to the...

5.3CVSS0.00133EPSS
Exploits0References10
OSV
OSV
added 6 days ago3 views

CVE-2026-15182 GNU LibreDWG BMP Image dwg.c dwg_bmp heap-based overflow

A vulnerability has been found in GNU LibreDWG up to 0.13.4. The affected element is the function dwgbmp of the file src/dwg.c of the component BMP Image Handler. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclosed to the...

4.8CVSS5.7AI score0.00133EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 6 days ago8 views

PT-2026-56793

Name of the Vulnerable Software and Affected Versions GNU LibreDWG versions prior to 0.14 Description A null pointer dereference occurs in the DWG File Handler component when the next obj argument is manipulated within the dwg next entity function located in the src/dwg.c file. This issue require...

4.8CVSS6AI score0.00118EPSS
Exploits0References18
RedhatCVE
RedhatCVE
added 2026/06/05 7:48 p.m.9 views

CVE-2026-9529

A security flaw has been discovered in GNU LibreDWG up to 0.14. The affected element is the function matchBLOCKHEADER of the file dwggrep.c of the component Dwggrep Utility. Performing a manipulation results in null pointer dereference. The attack requires a local approach. The exploit has been...

4.8CVSS4.8AI score0.00143EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:47 p.m.10 views

CVE-2026-9504

A weakness has been identified in GNU LibreDWG up to 0.14. Affected is the function bitconvertTU of the file programs/dwggrep.c of the component Dwggrep Utility. This manipulation causes out-of-bounds read. The attack needs to be launched locally. The exploit has been made available to the public...

4.8CVSS5.1AI score0.00176EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:47 p.m.10 views

CVE-2026-9500

A vulnerability was found in GNU LibreDWG up to 0.14. The affected element is the function read2004compressedsection of the file src/decode.c of the component Dwgread Utility. Performing a manipulation results in heap-based buffer overflow. The attack is only possible with local access. The explo...

5.3CVSS6.1AI score0.00124EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
added 2026/05/29 12:0 a.m.15 views

libredwg-devel-0.13.4.8200-1.1 on GA media (moderate)

libredwg-devel-0.13.4.8200-1.1 on GA media Announcement ID: openSUSE-SU-2026:10879-1 Rating: moderate Cross-References: CVE-2026-9501 CVE-2026-9503 CVE-2026-9504 CVE-2026-9605 Affected Products: openSUSE Tumbleweed An update that solves 4 vulnerabilities can now be installed. Description: These a...

7.5CVSS6.1AI score0.00339EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/28 2:16 p.m.17 views

CVE-2026-9501

A vulnerability was determined in GNU LibreDWG up to 0.14. The impacted element is the function decompressR2004section of the file src/decode.c of the component Dwgread Utility. Executing a manipulation can lead to reachable assertion. The attack is restricted to local execution. The exploit has...

4.8CVSS5.4AI score0.00144EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/28 2:15 p.m.11 views

CVE-2026-9605

A flaw has been found in GNU libredwg up to 0.13.4.8160. This issue affects the function bitreadRC of the file bits.c of the component Dwgbmp Utility. This manipulation causes heap-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been published and may be...

7.5CVSS7.2AI score0.00339EPSS
Exploits0References1
OSV
OSV
added 2026/05/28 12:0 a.m.12 views

OPENSUSE-SU-2026:10879-1 libredwg-devel-0.13.4.8200-1.1 on GA media

These are all security issues fixed in the libredwg-devel-0.13.4.8200-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS6.1AI score0.00339EPSS
Exploits0References4
Rows per page
Query Builder