11 matches found
CVE-2026-9530 GNU LibreDWG Dwgbmp Utility decode.c read_2004_compressed_section out-of-bounds
A weakness has been identified in GNU LibreDWG up to 0.14. The impacted element is the function read2004compressedsection of the file src/decode.c of the component Dwgbmp Utility. Executing a manipulation can lead to out-of-bounds read. The attack requires local access. The exploit has been made...
PT-2026-43187
Name of the Vulnerable Software and Affected Versions GNU LibreDWG versions prior to 0.15 Description A weakness in the Dwgbmp Utility component allows an out-of-bounds read, which occurs when the system reads data outside the intended boundary of a buffer. This issue is located in the read 2004...
PT-2026-43125
A vulnerability was found in GNU LibreDWG up to 0.14. The affected element is the function read 2004 compressed section of the file src/decode.c of the component Dwgread Utility. Performing a manipulation results in heap-based buffer overflow. The attack is only possible with local access. The...
CVE-2020-21831
A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004sectionhandles ../../src/decode.c:2637...
CVE-2020-21842
A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004sectionrevhistory ../../src/decode.c:3051...
CVE-2020-21838
A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via: read2004sectionappinfo ../../src/decode.c:2842...
CVE-2020-21842
A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004sectionrevhistory ../../src/decode.c:3051...
PT-2021-10683
Name of the Vulnerable Software and Affected Versions: GNU LibreDWG version 0.10 Description: A heap-based buffer overflow issue exists in the read 2004 section appinfo function, located in the decode.c file. This issue can be exploited via the read 2004 section appinfo function. Recommendations:...
PT-2021-10678
Name of the Vulnerable Software and Affected Versions: GNU LibreDWG version 0.10 Description: A heap-based buffer overflow issue exists, which can be triggered via the read 2004 compressed section function in the decode.c file. Recommendations: For GNU LibreDWG version 0.10, consider applying a...
PT-2021-10679
Name of the Vulnerable Software and Affected Versions: GNU LibreDWG version 0.10 Description: A heap-based buffer overflow issue exists in the read 2004 section classes function, located in the decode.c file. This issue is related to the line 2440 of the decode.c file. Recommendations: For GNU...
PT-2021-10675
Name of the Vulnerable Software and Affected Versions: GNU LibreDWG version 0.10 Description: A heap-based buffer overflow issue exists, which can be triggered via the read 2004 compressed section function in the decode.c file. Recommendations: For GNU LibreDWG version 0.10, consider applying a...