15 matches found
CVE-2022-33026
LibreDWG v0.12.4.4608 was discovered to contain a heap buffer overflow via the function bitcalcCRC at bits.c...
CVE-2022-35164
LibreDWG v0.12.4.4608 & commit f2dea29 was discovered to contain a heap use-after-free via bitcopychain...
CVE-2022-35164
LibreDWG v0.12.4.4608 & commit f2dea29 was discovered to contain a heap use-after-free via bitcopychain...
CVE-2022-35164
LibreDWG v0.12.4.4608 & commit f2dea29 was discovered to contain a heap use-after-free via bitcopychain...
CVE-2022-35164
LibreDWG is affected by CVE-2022-35164: v0.12.4.4608 with commit f2dea29 contains a heap use-after-free in bit_copy_chain. The CVSSv3.1 base score is 9.8 (CRITICAL). Remediation available: the OpenSUSE OSV advisory notes the fix is included in libredwg-devel-0.12.5-3.1 on the GA media. Per the Re...
CVE-2022-33033
LibreDWG v0.12.4.4608 was discovered to contain a double-free via the function dwgreadfile at dwg.c...
CVE-2022-33025
LibreDWG v0.12.4.4608 was discovered to contain a heap-use-after-free via the function decodepreR13section at decoder11.c...
CVE-2022-33034
LibreDWG v0.12.4.4608 was discovered to contain a stack overflow via the function copybytes at decoder2007.c...
CVE-2022-33024
There is an Assertion int decodepreR13entitiesBITCODERL, BITCODERL, unsigned int, BITCODERL, BITCODERL, BitChain , DwgData ' failed at dwg2dxf: decode.c:5801 in libredwg v0.12.4.4608...
Double free
LibreDWG v0.12.4.4608 was discovered to contain a double-free via the function dwgreadfile at dwg.c...
Stack overflow
LibreDWG v0.12.4.4608 was discovered to contain a stack overflow via the function copybytes at decoder2007.c...
CVE-2022-33033
LibreDWG v0.12.4.4608 was discovered to contain a double-free via the function dwgreadfile at dwg.c...
CVE-2022-33032
LibreDWG v0.12.4.4608 was discovered to contain a heap-buffer-overflow via the function decodepreR13sectionhdr at decoder11.c...
CVE-2022-33025
LibreDWG v0.12.4.4608 was discovered to contain a heap-use-after-free via the function decodepreR13section at decoder11.c...
CVE-2022-33028
LibreDWG v0.12.4.4608 was discovered to contain a heap buffer overflow via the function dwgaddobject at decode.c...