3 matches found
openSUSE 15 Security Update : libredwg (openSUSE-SU-2023:0201-1)
The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0201-1 advisory. - LibreDWG v0.12.4.4608 was discovered to contain a heap-use-after-free via the function decodepreR13section at decoder11.c. CVE-2022-33025 -...
OPENSUSE-SU-2023:0201-1 Security update for libredwg
This update for libredwg fixes the following issues: Update to version 0.12.5.5907 Security issues fixed: CVE-2022-33025: Fixed multiple security issues boo1200898 CVE-2023-36271: Fixed heap buffer overflow via the function bitwcs2nlen boo1212709 CVE-2023-36272: Fixed heap buffer overflow via the...
CVE-2022-33025
CVE-2022-33025 affects LibreDWG, specifically v0.12.4.4608, with a heap-use-after-free in decode_preR13_section (decode_r11.c). The issue is addressed in LibreDWG v0.12.5.5907, per the openSUSE/SU (openSUSE-SU-2023:0201-1) advisory and the OSV entry for OPENSUSE-SU-2023:0201-1, which list CVE-202...