Security update for libredwg (moderate)

An update that fixes 7 vulnerabilities is now available.

Description:

This update for libredwg fixes the following issues:

libredwg was updated to release 0.10:

API breaking changes:

• Added a new int *isnewp argument to all dynapi utf8text getters, if the
  returned string is freshly malloced or not.
• removed the UNKNOWN supertype, there are only UNKNOWN_OBJ and
  UNKNOWN_ENT left, with common_entity_data.
• renamed BLOCK_HEADER.preview_data to preview, preview_data_size to
  preview_size.
• renamed SHAPE.shape_no to style_id.
• renamed CLASS.wasazombie to is_zombie.

Bugfixes:

• Harmonized INDXFB with INDXF, removed extra src/in_dxfb.c.
• Fixed encoding of added r2000 AUXHEADER address.
• Fixed EED encoding from dwgrewrite.
• Add several checks against [CVE-2020-6609, boo#1160520], [CVE-2020-6610,
  boo#1160522], [CVE-2020-6611, boo#1160523], [CVE-2020-6612,
  boo#1160524], [CVE-2020-6613, boo#1160525], [CVE-2020-6614,
  boo#1160526], [CVE-2020-6615, boo#1160527] This update was imported from
  the openSUSE:Leap:15.1:Update update project.

Patch Instructions:

To install this openSUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.

Alternatively you can run the command listed for your product:

• openSUSE Backports SLE-15-SP1:

  zypper in -t patch openSUSE-2020-115=1