Lucene search
K

84 matches found

NVD
NVD
added 2021/05/17 9:15 p.m.14 views

CVE-2020-21840

A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bitsearchsentinel ../../src/bits.c:1985...

8.8CVSS0.01372EPSS
Exploits1References3
Prion
Prion
added 2021/05/17 9:15 p.m.20 views

Heap overflow

A heap based buffer overflow vulneraibility exists in GNU LibreDWG 0.10 via bitcalcCRC ../../src/bits.c:2213...

6.8CVSS8.8AI score0.01232EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2021/05/17 12:0 a.m.2 views

GNU LibreDWG 缓冲区错误漏洞

LibreDWG is a free C library for reading and writing DWG files. A heap buffer overflow vulnerability exists in GNU LibreDWG version 0.10. An attacker can exploit this vulnerability via the bitcalcCRC ... /... /src/bits.c:2213 to exploit the vulnerability and cause a heap buffer overflow...

8.8CVSS6.2AI score0.01232EPSS
Exploits1References3
CNNVD
CNNVD
added 2021/05/17 12:0 a.m.3 views

GNU LibreDWG 缓冲区错误漏洞

LibreDWG is a free C library for reading and writing DWG files. A heap buffer overflow vulnerability exists in GNU LibreDWG version 0.10. An attacker can exploit this vulnerability via the bitreadB ... /... /src/bits.c:135 to exploit the vulnerability and cause a heap buffer overflow...

8.8CVSS6.2AI score0.01372EPSS
Exploits1References4
CNNVD
CNNVD
added 2021/05/17 12:0 a.m.5 views

GNU LibreDWG 缓冲区错误漏洞

LibreDWG is a free C library for reading and writing DWG files. A heap buffer overflow vulnerability exists in GNU LibreDWG version 0.10. An attacker can exploit this vulnerability via the bitsearchsentinel ... /... /src/bits.c:1985 to cause a heap buffer overflow...

8.8CVSS6.2AI score0.01372EPSS
Exploits1References4
CNVD
CNVD
added 2020/07/20 12:0 a.m.1 views

GNU LibreDWG bits.c buffer overflow vulnerability

GNU LibreDWG is a C language library for working with DWG files. A buffer overflow vulnerability exists in GNU LibreDWG bits.c, which can be exploited by a remote attacker to submit a specially crafted malicious file that can be tricked into parsing to execute arbitrary code in the context of an...

8.1AI score
Exploits0References1
CNVD
CNVD
added 2020/07/19 12:0 a.m.2 views

GNU LibreDWG Buffer Overflow Vulnerability (CNVD-2021-01288)

GNU LibreDWG is a GNU Project C library for working with DWG files. A buffer overflow vulnerability exists in the bitwriteTF of the bits.c file in GNU LibreDWG version 0.9.3 and earlier. The vulnerability stems from a networked system or product performing operations in memory without properly...

8.1CVSS7.3AI score0.01245EPSS
Exploits1References1
NVD
NVD
added 2020/07/16 6:15 p.m.25 views

CVE-2019-20912

An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a stack overflow in bits.c, possibly related to bitreadTF...

8.8CVSS0.01321EPSS
Exploits1References2
OSV
OSV
added 2020/07/16 6:15 p.m.8 views

CVE-2019-20912

An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a stack overflow in bits.c, possibly related to bitreadTF...

8.8CVSS7.3AI score
Exploits0References2
Prion
Prion
added 2020/07/16 6:15 p.m.23 views

Stack overflow

An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a stack overflow in bits.c, possibly related to bitreadTF...

6.8CVSS8.7AI score0.01321EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/07/16 5:46 p.m.29 views

CVE-2019-20911

An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to denial of service in bitcalcCRC in bits.c, related to a for loop...

6.3AI score0.01019EPSS
Exploits1References2
Cvelist
Cvelist
added 2020/07/16 5:46 p.m.25 views

CVE-2019-20912

An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a stack overflow in bits.c, possibly related to bitreadTF...

8.8AI score0.01321EPSS
Exploits1References2
CVE
CVE
added 2020/07/16 5:46 p.m.53 views

CVE-2019-20912

CVE-2019-20912 affects GNU LibreDWG up to version 0.9.3. The issue is a vulnerability in bits.c where crafted input can trigger a stack overflow, potentially related to bit_read_TF. Multiple connected sources reiter this description, indicating a stack overflow in memory operations caused by malf...

8.8CVSS8.7AI score0.01321EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/07/16 5:46 p.m.34 views

CVE-2019-20915

An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in bitwriteTF in bits.c...

8.1AI score0.01245EPSS
Exploits1References2
CNVD
CNVD
added 2020/01/09 12:0 a.m.4 views

GNU LibreDWG Heap Buffer Overflow Vulnerability (CNVD-2020-04067)

LibreDWG is a free C library for reading and writing DWG files. A heap buffer overflow vulnerability exists in bitsearchsentinel in bits.c in GNU LibreDWG 0.9.3.2564. An attacker can exploit this vulnerability to cause a buffer overflow or heap overflow, among other things...

8.1CVSS7.4AI score0.01673EPSS
Exploits1References1
NVD
NVD
added 2020/01/08 9:15 p.m.19 views

CVE-2020-6613

GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bitsearchsentinel in bits.c...

8.1CVSS8.2AI score0.01673EPSS
Exploits1References3
OSV
OSV
added 2020/01/08 9:15 p.m.25 views

CVE-2020-6613

GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bitsearchsentinel in bits.c...

8.1CVSS6.9AI score0.01673EPSS
Exploits1References3
Cvelist
Cvelist
added 2020/01/08 8:43 p.m.27 views

CVE-2020-6613

GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bitsearchsentinel in bits.c...

8.4AI score0.01673EPSS
Exploits1References3
CVE
CVE
added 2020/01/08 8:43 p.m.243 views

CVE-2020-6613

CVE-2020-6613 affects GNU LibreDWG 0.9.3.2564 and is described as a heap-based over-read in bit_search_sentinel (bits.c). Connected entries show fixes in libredwg upstream to release 0.10 and security advisories (openSUSE/SUSE updates) that patch libredwg to mitigate CVE-2020-6613 (and related CV...

8.1CVSS8.3AI score0.01673EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2019/08/21 12:0 a.m.4 views

PT-2019-3467 · Freeware +1 · Faad2 +1

Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 version 2.8.8 Description: A buffer overflow issue affects the faad resetbits function in libfaad/bits.c. The number of bits to be read is determined by ld-buffer size - words4, cast to uint32. If...

7.8CVSS6.5AI score0.01518EPSS
Exploits22References114
Rows per page
Query Builder