30 matches found
SUSE CVE-2019-9772
An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a NULL pointer dereference in the function dwgdxfLEADER at dwg.spec...
CVE-2021-39528
An issue was discovered in libredwg through v0.10.1.3751. dwgfreeMATERIALprivate in dwg.spec has a double free...
CVE-2021-39528
An issue was discovered in libredwg through v0.10.1.3751. dwgfreeMATERIALprivate in dwg.spec has a double free...
Double free
An issue was discovered in libredwg through v0.10.1.3751. dwgfreeMATERIALprivate in dwg.spec has a double free...
CVE-2021-39528
An issue was discovered in libredwg through v0.10.1.3751. dwgfreeMATERIALprivate in dwg.spec has a double free...
CVE-2019-20909
An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwgencodeLWPOLYLINE in dwg.spec...
CVE-2019-20909
An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwgencodeLWPOLYLINE in dwg.spec...
Null pointer dereference
An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwgencodeLWPOLYLINE in dwg.spec...
CVE-2019-20909
CVE-2019-20909 affects GNU LibreDWG (library for DWG files). Multiple connected sources confirm a NULL pointer dereference in the function dwg_encode_LWPOLYLINE (dwg.spec), present in LibreDWG up to version 0.9.3 and earlier. Documented impact describes a crash/denial of service vector via this d...
Memory corruption
An issue was discovered in GNU LibreDWG before 0.93. Crafted input will lead to an attempted excessive memory allocation in dwgdecodeSPLINEprivate in dwg.spec...
Memory corruption
An issue was discovered in GNU LibreDWG 0.92. Crafted input will lead to an attempted excessive memory allocation in dwgdecodeHATCHprivate in dwg.spec...
CVE-2019-20009
CVE-2019-20009 affects GNU LibreDWG prior to 0.93. The issue arises from crafted input causing an attempted excessive memory allocation in dwg_decode_SPLINE_private in dwg.spec, leading to memory exhaustion. Multiple connected advisories (openSUSE/SUSE) document the vulnerability and confirm reme...
CVE-2019-20013
An issue was discovered in GNU LibreDWG before 0.93. Crafted input will lead to an attempted excessive memory allocation in decode3dsolid in dwg.spec...
CVE-2019-20015
CVE-2019-20015 affects GNU LibreDWG 0.92. Crafted input can trigger an excessive memory allocation in dwg_decode_LWPOLYLINE_private (dwg.spec). Public U/A details are provided across multiple advisories; exploitability status is not stated in the provided documents. OpenSUSE/SUSE advisories show ...
CVE-2019-9779
An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a NULL pointer dereference in the function dwgdxfLTYPE at dwg.spec earlier than CVE-2019-9776...
Out-of-bounds
An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is an out-of-bounds read in the function dwgdxfBLOCKCONTROL at dwg.spec...
CVE-2019-9772
An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a NULL pointer dereference in the function dwgdxfLEADER at dwg.spec...
Null pointer dereference
An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a NULL pointer dereference in the function dwgdxfLEADER at dwg.spec...
Heap overflow
An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a heap-based buffer over-read in the function dwgdxfLTYPE at dwg.spec...
Null pointer dereference
An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a NULL pointer dereference in the function dwgdxfLTYPE at dwg.spec later than CVE-2019-9779...