84 matches found
CVE-2020-21840
A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bitsearchsentinel ../../src/bits.c:1985...
Heap overflow
A heap based buffer overflow vulneraibility exists in GNU LibreDWG 0.10 via bitcalcCRC ../../src/bits.c:2213...
GNU LibreDWG 缓冲区错误漏洞
LibreDWG is a free C library for reading and writing DWG files. A heap buffer overflow vulnerability exists in GNU LibreDWG version 0.10. An attacker can exploit this vulnerability via the bitcalcCRC ... /... /src/bits.c:2213 to exploit the vulnerability and cause a heap buffer overflow...
GNU LibreDWG 缓冲区错误漏洞
LibreDWG is a free C library for reading and writing DWG files. A heap buffer overflow vulnerability exists in GNU LibreDWG version 0.10. An attacker can exploit this vulnerability via the bitreadB ... /... /src/bits.c:135 to exploit the vulnerability and cause a heap buffer overflow...
GNU LibreDWG 缓冲区错误漏洞
LibreDWG is a free C library for reading and writing DWG files. A heap buffer overflow vulnerability exists in GNU LibreDWG version 0.10. An attacker can exploit this vulnerability via the bitsearchsentinel ... /... /src/bits.c:1985 to cause a heap buffer overflow...
GNU LibreDWG bits.c buffer overflow vulnerability
GNU LibreDWG is a C language library for working with DWG files. A buffer overflow vulnerability exists in GNU LibreDWG bits.c, which can be exploited by a remote attacker to submit a specially crafted malicious file that can be tricked into parsing to execute arbitrary code in the context of an...
GNU LibreDWG Buffer Overflow Vulnerability (CNVD-2021-01288)
GNU LibreDWG is a GNU Project C library for working with DWG files. A buffer overflow vulnerability exists in the bitwriteTF of the bits.c file in GNU LibreDWG version 0.9.3 and earlier. The vulnerability stems from a networked system or product performing operations in memory without properly...
CVE-2019-20912
An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a stack overflow in bits.c, possibly related to bitreadTF...
CVE-2019-20912
An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a stack overflow in bits.c, possibly related to bitreadTF...
Stack overflow
An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a stack overflow in bits.c, possibly related to bitreadTF...
CVE-2019-20911
An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to denial of service in bitcalcCRC in bits.c, related to a for loop...
CVE-2019-20912
An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a stack overflow in bits.c, possibly related to bitreadTF...
CVE-2019-20912
CVE-2019-20912 affects GNU LibreDWG up to version 0.9.3. The issue is a vulnerability in bits.c where crafted input can trigger a stack overflow, potentially related to bit_read_TF. Multiple connected sources reiter this description, indicating a stack overflow in memory operations caused by malf...
CVE-2019-20915
An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in bitwriteTF in bits.c...
GNU LibreDWG Heap Buffer Overflow Vulnerability (CNVD-2020-04067)
LibreDWG is a free C library for reading and writing DWG files. A heap buffer overflow vulnerability exists in bitsearchsentinel in bits.c in GNU LibreDWG 0.9.3.2564. An attacker can exploit this vulnerability to cause a buffer overflow or heap overflow, among other things...
CVE-2020-6613
GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bitsearchsentinel in bits.c...
CVE-2020-6613
GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bitsearchsentinel in bits.c...
CVE-2020-6613
GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bitsearchsentinel in bits.c...
CVE-2020-6613
CVE-2020-6613 affects GNU LibreDWG 0.9.3.2564 and is described as a heap-based over-read in bit_search_sentinel (bits.c). Connected entries show fixes in libredwg upstream to release 0.10 and security advisories (openSUSE/SUSE updates) that patch libredwg to mitigate CVE-2020-6613 (and related CV...
PT-2019-3467 · Freeware +1 · Faad2 +1
Name of the Vulnerable Software and Affected Versions: Freeware Advanced Audio Decoder 2 FAAD2 version 2.8.8 Description: A buffer overflow issue affects the faad resetbits function in libfaad/bits.c. The number of bits to be read is determined by ld-buffer size - words4, cast to uint32. If...