10 matches found
SUSE CVE-2022-33033
LibreDWG v0.12.4.4608 was discovered to contain a double-free via the function dwgreadfile at dwg.c...
CVE-2022-35164
LibreDWG v0.12.4.4608 & commit f2dea29 was discovered to contain a heap use-after-free via bitcopychain...
GNU LibreDWG 资源管理错误漏洞
GNU LibreDWG is a GNU community C library for working with DWG files. A resource management error vulnerability exists in LibreDWG version v0.12.4.4608, which stems from a post-release reuse condition in bitcopychain...
CVE-2022-33025
LibreDWG v0.12.4.4608 was discovered to contain a heap-use-after-free via the function decodepreR13section at decoder11.c...
CVE-2022-33032
LibreDWG v0.12.4.4608 was discovered to contain a heap-buffer-overflow via the function decodepreR13sectionhdr at decoder11.c...
CVE-2022-33033
LibreDWG v0.12.4.4608 was discovered to contain a double-free via the function dwgreadfile at dwg.c...
CVE-2022-33026
LibreDWG v0.12.4.4608 was discovered to contain a heap buffer overflow via the function bitcalcCRC at bits.c...
PT-2022-21654 · Libredwg · Libredwg
Name of the Vulnerable Software and Affected Versions: LibreDWG version 0.12.4.4608 Description: A heap buffer overflow issue was discovered in the bit calc CRC function at bits.c, which can be exploited. Recommendations: For LibreDWG version 0.12.4.4608, consider disabling the bit calc CRC...
PT-2022-21657 · Libredwg · Libredwg
Name of the Vulnerable Software and Affected Versions: LibreDWG version 0.12.4.4608 Description: The issue is related to a heap-buffer-overflow in the decode preR13 section hdr function located at decode r11.c. This overflow can potentially lead to memory corruption and execution of arbitrary cod...
PT-2022-21655 · Libredwg · Libredwg
Name of the Vulnerable Software and Affected Versions: LibreDWG version 0.12.4.4608 Description: A heap-use-after-free issue was discovered in LibreDWG, which occurs via the dwg add handleref function at dwg.c. Recommendations: For LibreDWG version 0.12.4.4608, consider restricting access to the...