Lucene search
K

16992 matches found

Prion
Prion
added 2020/07/16 6:15 p.m.13 views

Heap overflow

An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in bitwriteTF in bits.c...

5.8CVSS7.9AI score0.01245EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2020/07/16 6:15 p.m.19 views

Null pointer dereference

An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwgencodeLWPOLYLINE in dwg.spec...

5CVSS7.5AI score0.01619EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2020/07/16 6:15 p.m.20 views

Null pointer dereference

An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwgencodecommonentityhandledata in commonentityhandledata.spec...

7.5CVSS9.2AI score0.0192EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2020/07/16 6:15 p.m.23 views

Stack overflow

An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a stack overflow in bits.c, possibly related to bitreadTF...

6.8CVSS8.7AI score0.01321EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/07/16 5:46 p.m.22 views

CVE-2019-20909

An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwgencodeLWPOLYLINE in dwg.spec...

7.5AI score0.01619EPSS
Exploits1References2
CVE
CVE
added 2020/07/16 5:46 p.m.55 views

CVE-2019-20909

CVE-2019-20909 affects GNU LibreDWG (library for DWG files). Multiple connected sources confirm a NULL pointer dereference in the function dwg_encode_LWPOLYLINE (dwg.spec), present in LibreDWG up to version 0.9.3 and earlier. Documented impact describes a crash/denial of service vector via this d...

7.5CVSS7.4AI score0.01619EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/07/16 5:46 p.m.25 views

CVE-2019-20910

An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in decodeR13R2000 in decode.c, a different vulnerability than CVE-2019-20011...

8.6AI score0.01245EPSS
Exploits1References2
CVE
CVE
added 2020/07/16 5:46 p.m.46 views

CVE-2019-20910

GNU LibreDWG up to version 0.9.3 is affected by CVE-2019-20910 due to a heap-based buffer over-read in decode_R13_R2000 within decode.c. This is observed in the CVE-2019-20910 entries across NVD/CNVD/OSV and related advisories (e.g., OpenSUSE security update for libredwg). The vulnerability stems...

8.1CVSS8.2AI score0.01245EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/07/16 5:46 p.m.29 views

CVE-2019-20911

An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to denial of service in bitcalcCRC in bits.c, related to a for loop...

6.3AI score0.01019EPSS
Exploits1References2
CVE
CVE
added 2020/07/16 5:46 p.m.56 views

CVE-2019-20911

CVE-2019-20911 affects GNU LibreDWG up to version 0.9.3. The vulnerability lies in bit_calc_CRC within bits.c, where a crafted input can trigger a denial of service due to a problematic for loop. The connected documents consistently describe DoS potential but do not provide explicit exploitation ...

6.5CVSS6.2AI score0.01019EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/07/16 5:46 p.m.25 views

CVE-2019-20912

An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a stack overflow in bits.c, possibly related to bitreadTF...

8.8AI score0.01321EPSS
Exploits1References2
CVE
CVE
added 2020/07/16 5:46 p.m.53 views

CVE-2019-20912

CVE-2019-20912 affects GNU LibreDWG up to version 0.9.3. The issue is a vulnerability in bits.c where crafted input can trigger a stack overflow, potentially related to bit_read_TF. Multiple connected sources reiter this description, indicating a stack overflow in memory operations caused by malf...

8.8CVSS8.7AI score0.01321EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/07/16 5:46 p.m.26 views

CVE-2019-20913

An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in dwgencodeentity in commonentitydata.spec...

8.1AI score0.01245EPSS
Exploits1References2
CVE
CVE
added 2020/07/16 5:46 p.m.57 views

CVE-2019-20913

CVE-2019-20913 affects GNU LibreDWG up to version 0.9.3. The issue is a heap-based buffer over-read in the function dwg_encode_entity within common_entity_data.spec, triggered by crafted input. Impact is described as a heap-based over-read; no additional exploit details or remediation are provide...

8.1CVSS7.9AI score0.01245EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2020/07/16 5:46 p.m.51 views

CVE-2019-20914

GNU LibreDWG up to version 0.9.3 contains a NULL pointer dereference in dwg_encode_common_entity_handle_data (common_entity_handle_data.spec). This vulnerability is documented across multiple sources (Red Hat, SUSE, NVD, OSV, etc.). The available connected documents confirm the issue but do not p...

9.8CVSS9.2AI score0.0192EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/07/16 5:46 p.m.27 views

CVE-2019-20914

An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwgencodecommonentityhandledata in commonentityhandledata.spec...

9.4AI score0.0192EPSS
Exploits1References2
Cvelist
Cvelist
added 2020/07/16 5:46 p.m.34 views

CVE-2019-20915

An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in bitwriteTF in bits.c...

8.1AI score0.01245EPSS
Exploits1References2
CVE
CVE
added 2020/07/16 5:46 p.m.52 views

CVE-2019-20915

CVE-2019-20915 affects GNU LibreDWG up to version 0.9.3. A crafted input triggers a heap-based buffer over-read in bit_write_TF within bits.c, as described across multiple connected documents. Impact details in sources vary, but CVSS data from NVD indicates high impact under network attack with p...

8.1CVSS7.9AI score0.01245EPSS
Exploits1References2Affected Software1
Amazon
Amazon
added 2020/07/16 12:0 a.m.30 views

Medium: patch

Issue Overview: In GNU patch through 2.7.6, the following of symlinks is mishandled in certain cases other than input files. This affects inp.c and util.c. CVE-2019-13636 Affected Packages: patch Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for t...

5.9CVSS6.5AI score0.03927EPSS
Exploits0
OpenVAS
OpenVAS
added 2020/07/12 12:0 a.m.5 views

Fedora: Security Advisory for kernel (FEDORA-2020-3c3d1d7006)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Rows per page
Query Builder