Libredwg Security Vulnerabilities and Issues — Libredwg CVE List

Lucene search

GnuLibredwg

7 matches found

CVE•added 2019/12/27 1:15 a.m.•178 views

CVE-2019-20013

An issue was discovered in GNU LibreDWG before 0.93. Crafted input will lead to an attempted excessive memory allocation in decode_3dsolid in dwg.spec.

6.5CVSS7.4AI score0.00556EPSS

CVE•added 2019/12/27 1:15 a.m.•171 views

CVE-2019-20010

An issue was discovered in GNU LibreDWG 0.92. There is a use-after-free in resolve_objectref_vector in decode.c.

8.8CVSS8.8AI score0.0051EPSS

CVE•added 2019/12/27 1:15 a.m.•171 views

CVE-2019-20011

An issue was discovered in GNU LibreDWG 0.92. There is a heap-based buffer over-read in decode_R13_R2000 in decode.c.

8.8CVSS8.2AI score0.0051EPSS

CVE•added 2019/12/27 1:15 a.m.•171 views

CVE-2019-20012

An issue was discovered in GNU LibreDWG 0.92. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_HATCH_private in dwg.spec.

6.5CVSS7.4AI score0.00577EPSS

CVE•added 2019/12/27 1:15 a.m.•169 views

CVE-2019-20009

An issue was discovered in GNU LibreDWG before 0.93. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_SPLINE_private in dwg.spec.

6.5CVSS7.4AI score0.00556EPSS

CVE•added 2019/12/27 1:15 a.m.•169 views

CVE-2019-20015

An issue was discovered in GNU LibreDWG 0.92. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_LWPOLYLINE_private in dwg.spec.

6.5CVSS7.4AI score0.00577EPSS

CVE•added 2019/12/27 1:15 a.m.•167 views

CVE-2019-20014

An issue was discovered in GNU LibreDWG before 0.93. There is a double-free in dwg_free in free.c.

8.8CVSS8.8AI score0.0051EPSS