libredwg Security Vulnerabilities

libredwg is a free implementation of the DWG file format. A security vulnerability exists in libredwg versions prior to 0.12.5.6384, which stems from an out-of-bounds read problem in section-numpages in decoder2007.c. The vulnerability is caused by a read-over-bounds problem in section-numpages...

SUSE CVE-2021-42586

A heap buffer overflow was discovered in copybytes in decoder2007.c in dwgread before 0.12.4 via a crafted dwg file...

GNU LibreDWG Heap Buffer Overflow Vulnerability (CNVD-2020-04068)

LibreDWG is a free C library for reading and writing DWG files. A heap buffer overflow vulnerability exists in copycompressedbytes in decoder2007.c in LibreDWG 0.9.3.2564. An attacker can exploit this vulnerability to cause a buffer overflow or heap overflow, among other things...

Heap overflow

GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in readpagesmap in decoder2007.c...

PT-2020-19179 · Gnu +1 · Gnu Libredwg +1

Name of the Vulnerable Software and Affected Versions: GNU LibreDWG version 0.9.3.2564 Description: The issue is related to a heap-based buffer over-read in the copy compressed bytes function located in decode r2007.c. Recommendations: For GNU LibreDWG version 0.9.3.2564, consider updating to a...