GNU LibreDWG 0.12.5

CPE Details

GNU LibreDWG 0.12.5
0.12.5
2022-06-29
15h08 +00:00
2022-06-29
15h11 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:gnu:libredwg:0.12.5:*:*:*:*:*:*:*

Informations

Vendor

gnu

Product

libredwg

Version

0.12.5

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-26157 2024-01-02 05h00 +00:00 Versions of the package libredwg before 0.12.5.6384 are vulnerable to Denial of Service (DoS) due to an out-of-bounds read involving section->num_pages in decode_r2007.c.
7.5
High
CVE-2023-36271 2023-06-23 00h00 +00:00 LibreDWG v0.10 to v0.12.5 was discovered to contain a heap buffer overflow via the function bit_wcs2nlen at bits.c.
8.8
High
CVE-2023-36272 2023-06-23 00h00 +00:00 LibreDWG v0.10 to v0.12.5 was discovered to contain a heap buffer overflow via the function bit_utf8_to_TU at bits.c.
8.8
High
CVE-2023-36274 2023-06-23 00h00 +00:00 LibreDWG v0.11 to v0.12.5 was discovered to contain a heap buffer overflow via the function bit_write_TF at bits.c.
8.8
High
CVE-2023-36273 2023-06-22 22h00 +00:00 LibreDWG v0.12.5 was discovered to contain a heap buffer overflow via the function bit_calc_CRC at bits.c.
8.8
High
CVE-2023-25222 2023-03-01 00h00 +00:00 A heap-based buffer overflow vulnerability exits in GNU LibreDWG v0.12.5 via the bit_read_RC function at bits.c.
8.8
High