Out-of-bounds

An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is an out-of-bounds read in the function bitreadB at bits.c...

CVE-2019-9774

CVE-2019-9774 concerns an out-of-bounds read in GNU LibreDWG 0.7 and 0.7.1645, specifically in bit_read_B (bits.c). Connected documents show downstream fixes in libredwg/OpenSUSE releases, notably a 0.9.x line with multiple CVEs fixed (e.g., CVE-2019-9774 and related issues) and security updates ...

CVE-2019-9771

The CVE-2019-9771 issue affects GNU LibreDWG 0.7 and 0.7.1645, caused by a NULL pointer dereference in bit_convert_TU (bits.c). Public docs show remediation in libredwg releases up to 0.9.3, with OpenSUSE/SUSE advisories (e.g., openSUSE-SU-2020:0068-1/0095-1) noting fixes that address null pointe...

GNU LibreDWG Buffer Overflow Vulnerability (CNVD-2019-12552)

GNU LibreDWG is a GNU Project C library for working with DWG files. A buffer overflow vulnerability exists in the 'bitreadB' function of the bits.c file in GNU LibreDWG version 0.7 and 0.7.1645. An attacker could exploit this vulnerability to cause a denial of service or disclose information...