17002 matches found
CVE-2019-9773
An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a heap-based buffer overflow in the function dwgdecodeeeddata at decode.c for the z dimension...
CVE-2019-9776
CVE-2019-9776 is a vulnerability in GNU LibreDWG (LibreDWG/libredwg) where a NULL pointer dereference occurs in the DWF/DXF handling path (dwg_dxf_LTYPE). Publicly discussed fixes are delivered via libredwg updates in openSUSE/SLE backports: release 0.9.3 (and related 0.9.x series) includes fixes...
CVE-2019-9770
The CVE-2019-9770 entry concerns GNU LibreDWG before, specifically versions 0.7 and 0.7.1645, which have a heap-based buffer overflow in dwg_decode_eed_data (decode.c) for the y dimension. The vulnerability is caused by improper handling in decoding EED data, leading to a potential overflow. Seve...
CVE-2019-9774
An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is an out-of-bounds read in the function bitreadB at bits.c...
CVE-2019-9775
An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is an out-of-bounds read in the function dwgdxfBLOCKCONTROL at dwg.spec...
CVE-2019-9777
An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a heap-based buffer over-read in the function dxfheaderwrite at headervariablesdxf.spec...
CVE-2019-9777
CVE-2019-9777 affects GNU LibreDWG 0.7 and 0.7.1645 and is a heap-based buffer over-read in dxf_header_write (header_variables_dxf.spec). Connected documents link this CVE to the libredwg project and confirm fixes in later releases; openSUSE/SUSE advisories state libredwg 0.9.3 (and related updat...
CVE-2019-9771
The CVE-2019-9771 issue affects GNU LibreDWG 0.7 and 0.7.1645, caused by a NULL pointer dereference in bit_convert_TU (bits.c). Public docs show remediation in libredwg releases up to 0.9.3, with OpenSUSE/SUSE advisories (e.g., openSUSE-SU-2020:0068-1/0095-1) noting fixes that address null pointe...
CVE-2019-9772
CVE-2019-9772 affects GNU LibreDWG up to version 0.7 (patches referenced in LibreDWG 0.9.x series). The vulnerability is a NULL pointer dereference in the function dwg_dxf_LEADER in dwg.spec, as described in the CVE entry. Publicly discussed openSUSE/SUSE advisories (openSUSE-SU-2020:0068-1/0068-...
CVE-2019-9776
An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a NULL pointer dereference in the function dwgdxfLTYPE at dwg.spec later than CVE-2019-9779...
CVE-2019-9778
CVE-2019-9778 affects GNU LibreDWG 0.7 and 0.7.1645, with a heap-based buffer over-read in the function dwg_dxf_LTYPE in dwg.spec. Public records (SUSE/openSUSE and OSV entries) indicate that fixes were delivered in libredwg releases up to 0.9.3 and related updates, addressing multiple overflow/n...
CVE-2019-9771
An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a NULL pointer dereference in the function bitconvertTU at bits.c...
CVE-2019-9772
An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is a NULL pointer dereference in the function dwgdxfLEADER at dwg.spec...
GNU LibreDWG Buffer Overflow Vulnerability (CNVD-2019-12552)
GNU LibreDWG is a GNU Project C library for working with DWG files. A buffer overflow vulnerability exists in the 'bitreadB' function of the bits.c file in GNU LibreDWG version 0.7 and 0.7.1645. An attacker could exploit this vulnerability to cause a denial of service or disclose information...
GNU LibreDWG Heap Buffer Overflow Vulnerability
GNU LibreDWG is a GNU Project C library for working with DWG files. A buffer overflow vulnerability exists in the 'dwgdecodeeeddata' function of the decode.c file in GNU LibreDWG version 0.7 and version 0.7.1645. An attacker could exploit this vulnerability to cause a denial of service...
GNU LibreDWG Buffer Overflow Vulnerability
GNU LibreDWG is a GNU Project C library for working with DWG files. A buffer overflow vulnerability exists in the 'dwgdxfLTYPE' function of the dwg.spec file in GNU LibreDWG version 0.7 and 0.7.1645, which can be exploited by an attacker to cause a denial of service...
GNU LibreDWG Heap Buffer Overflow Vulnerability (CNVD-2019-12548)
GNU LibreDWG is a GNU Project C library for working with DWG files. A buffer overflow vulnerability exists in the 'dwgdecodeeeddata' function of the decode.c file in GNU LibreDWG version 0.7 and version 0.7.1645. An attacker could exploit this vulnerability to execute code or cause a denial of...
GNU LibreDWG null pointer back-reference vulnerability (CNVD-2019-12550)
GNU LibreDWG is a GNU Project C library for working with DWG files. A null pointer back-reference vulnerability exists in the 'dwgdxfLEADER' function of the dwg.spec file in GNU LibreDWG version 0.7 and 0.7.1645. An attacker could exploit this vulnerability to cause a denial of service...
GNU LibreDWG Null Pointer Backreference Vulnerability
GNU LibreDWG is a GNU Project C library for working with DWG files. A null pointer back-reference vulnerability exists in the '.spec' function of the dwg.spec file in GNU LibreDWG version 0.7 and 0.7.1645. An attacker could exploit this vulnerability to cause a denial of service...
GLSA-201903-09 : GNU C Library: Arbitrary descriptor allocation
The remote host is affected by the vulnerability described in GLSA-201903-09 GNU C Library: Arbitrary descriptor allocation A vulnerability was discovered in the GNU C Library functions xdrbytes and xdrstring. Impact : A remote attacker, by sending a crafted UDP packet, could cause a Denial of...