Product:

Libredwg

(Gnu)
Repositories

Unknown:

This might be proprietary software.

#Vulnerabilities 87
Date Id Summary Products Score Patch Annotated
2021-05-17 CVE-2020-21842 A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read_2004_section_revhistory ../../src/decode.c:3051. Libredwg 8.8
2021-05-17 CVE-2020-21843 A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bit_read_RC ../../src/bits.c:318. Libredwg 8.8
2020-07-17 CVE-2020-15807 GNU LibreDWG before 0.11 allows NULL pointer dereferences via crafted input files. Libredwg N/A
2020-07-16 CVE-2019-20915 An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in bit_write_TF in bits.c. Libredwg N/A
2020-07-16 CVE-2019-20914 An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwg_encode_common_entity_handle_data in common_entity_handle_data.spec. Libredwg N/A
2020-07-16 CVE-2019-20913 An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in dwg_encode_entity in common_entity_data.spec. Libredwg N/A
2020-07-16 CVE-2019-20912 An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a stack overflow in bits.c, possibly related to bit_read_TF. Libredwg N/A
2020-07-16 CVE-2019-20911 An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to denial of service in bit_calc_CRC in bits.c, related to a for loop. Libredwg N/A
2020-07-16 CVE-2019-20910 An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in decode_R13_R2000 in decode.c, a different vulnerability than CVE-2019-20011. Libredwg N/A
2020-07-16 CVE-2019-20909 An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwg_encode_LWPOLYLINE in dwg.spec. Libredwg N/A