CVE-2021-21898

CVE-2021-21898 affects LibreCAD/libdxfrw (2.2.0-rc2-19-ge02f3580). The vulnerability lies in dwgCompressor::decompress18(), where a crafted DWG can trigger an out-of-bounds write, enabling possible code execution. Public references from Gentoo GLSA, Debian DSA/DLA and openSUSE/NASL advisories con...

LibreCAD 缓冲区错误漏洞

A buffer overflow vulnerability exists in LibreCAD, an open source CAD computer-aided design application from the LibreCAD organization, in LibreCad libdxfrw, which stems from the failure of the product's dwgCompressor::decompress18 function to properly handle special input data. An attacker coul...

PT-2021-5117 · Librecad +2 · Libdxfrw +2

Name of the Vulnerable Software and Affected Versions: LibreCad libdxfrw version 2.2.0-rc2-19-ge02f3580 Description: A code execution issue exists in the dwgCompressor::decompress18 functionality. This can be triggered by a specially-crafted .dwg file, leading to an out-of-bounds write. An attack...

CVE-2018-14444

libdxfrw 0.6.3 has an Integer Overflow in dwgCompressor::decompress18 in dwgutil.cpp, leading to an out-of-bounds read and application crash...