PT-2023-35977 · Git +1 · Libredwg

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A crash occurred due to a segmentation fault on an unknown address. The crash involved the dwg encode function in the llvmfuzz.c file. No information is...

PT-2023-35777 · Git +1 · Libredwg

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-buffer-overflow READ 8 crash has been reported. The crash occurs in the dwg encode function, as indicated by the crash state. This issue is relate...

SUSE CVE-2019-20909

An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwgencodeLWPOLYLINE in dwg.spec...

SUSE CVE-2021-36080

GNU LibreDWG 0.12.3.4163 through 0.12.3.4191 has a double-free in bitchainfree called from dwgencodeMTEXT and dwgencodeaddobject...

GNU LibreDWG Heap Buffer Overflow Vulnerability

GNU LibreDWG is a GNU Project C library for working with DWG files. A security vulnerability exists in the dwgencodeentity of the commonentitydata.spec file in GNU LibreDWG version 0.9.3 and earlier. The vulnerability stems from a networked system or product performing operations in memory withou...