EUVD-2020-27758

Malware in sbrugna...

EUVD-2021-29550

Malicious code in bioql PyPI...

EUVD-2021-29549

Malicious code in bioql PyPI...

CVE-2020-6610

GNU LibreDWG 0.9.3.2564 has an attempted excessive memory allocation in readsectionsmap in decoder2007.c...

openSUSE 15 Security Update : libredwg (openSUSE-SU-2024:0147-1)

The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2024:0147-1 advisory. Update to tag 0.12.5.6924: - CVE-2023-26157: Fixed out-of-bound read involving section-numpages in decoder2007.c boo1218473 Tenable has extracted the...

OPENSUSE-SU-2024:0147-1 Security update for libredwg

This update for libredwg fixes the following issues: Update to tag 0.12.5.6924: - CVE-2023-26157: Fixed out-of-bound read involving section-numpages in decoder2007.c boo1218473...

CVE-2023-26157

Versions of the package libredwg before 0.12.5.6384 are vulnerable to Denial of Service DoS due to an out-of-bounds read involving section-numpages in decoder2007.c...

SUSE CVE-2020-6610

GNU LibreDWG 0.9.3.2564 has an attempted excessive memory allocation in readsectionsmap in decoder2007.c...

SUSE CVE-2021-42585

A heap buffer overflow was discovered in copycompressedbytes in decoder2007.c in dwgread before 0.12.4 via a crafted dwg file...

CVE-2022-33034

LibreDWG v0.12.4.4608 was discovered to contain a stack overflow via the function copybytes at decoder2007.c...

Stack overflow

LibreDWG v0.12.4.4608 was discovered to contain a stack overflow via the function copybytes at decoder2007.c...

CVE-2022-33034

CVE-2022-33034 affects LibreDWG v0.12.4.4608, with a stack overflow vulnerability in the function copy_bytes in decode_r2007.c. The connected sources consistently describe a stack overflow condition in the GNU LibreDWG library for DWG file processing; no detailed exploitation vectors or CVSS-base...

GNU LibreDWG Heap Buffer Overflow Vulnerability (CNVD-2022-52261)

GNU LibreDWG is a C library for processing DWG files from the GNU community.A heap buffer overflow vulnerability exists in versions of GNU LibreDWG prior to 0.12.4, which stems from a boundary error in copycompressedbytes of decoder2007.c when handling untrusted input. No detailed vulnerability...

GNU LibreDWG Heap Buffer Overflow Vulnerability (CNVD-2022-52260)

GNU LibreDWG is a C library for processing DWG files from the GNU community.A heap buffer overflow vulnerability exists in versions of GNU LibreDWG prior to 0.12.4, which stems from a boundary error in copybytes of decoder2007.c when handling untrusted input. No detailed vulnerability details are...

CVE-2021-42586

A heap buffer overflow was discovered in copybytes in decoder2007.c in dwgread before 0.12.4 via a crafted dwg file...

CVE-2021-42586

A heap buffer overflow was discovered in copybytes in decoder2007.c in dwgread before 0.12.4 via a crafted dwg file...

Heap overflow

A heap buffer overflow was discovered in copybytes in decoder2007.c in dwgread before 0.12.4 via a crafted dwg file...

CVE-2021-42586

CVE-2021-42586 affects GNU LibreDWG prior to 0.12.4, where a boundary/heap issue in decode_r2007.c: copy_bytes can trigger a heap buffer overflow when processing crafted DWG files. Several sources (SUSE, CNVD, NVD/NVD entry) confirm the vulnerability and version target. Impact is a heap overflow,...

CVE-2021-42585

The CVE-2021-42585 entry concerns GNU LibreDWG (a C library for processing DWG files). A heap buffer overflow was reported in copy_compressed_bytes within decode_r2007.c when processing untrusted input, affecting LibreDWG versions prior to 0.12.4 and triggered by crafted DWG files. Root cause ide...

CVE-2020-6609

GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in readpagesmap in decoder2007.c...