GNU LibreDWG 0.10.2641

CPE Details

GNU LibreDWG 0.10.2641
0.10.2641
2020-05-29
16h07 +00:00
2020-05-29
16h07 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:gnu:libredwg:0.10.2641:*:*:*:*:*:*:*

Informations

Vendor

gnu

Product

libredwg

Version

0.10.2641

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-26157 2024-01-02 05h00 +00:00 Versions of the package libredwg before 0.12.5.6384 are vulnerable to Denial of Service (DoS) due to an out-of-bounds read involving section->num_pages in decode_r2007.c.
7.5
High
CVE-2023-36271 2023-06-23 00h00 +00:00 LibreDWG v0.10 to v0.12.5 was discovered to contain a heap buffer overflow via the function bit_wcs2nlen at bits.c.
8.8
High
CVE-2023-36272 2023-06-23 00h00 +00:00 LibreDWG v0.10 to v0.12.5 was discovered to contain a heap buffer overflow via the function bit_utf8_to_TU at bits.c.
8.8
High
CVE-2022-35164 2022-08-18 02h49 +00:00 LibreDWG v0.12.4.4608 & commit f2dea29 was discovered to contain a heap use-after-free via bit_copy_chain.
9.8
Critical
CVE-2021-42586 2022-05-23 08h39 +00:00 A heap buffer overflow was discovered in copy_bytes in decode_r2007.c in dwgread before 0.12.4 via a crafted dwg file.
8.8
High
CVE-2021-42585 2022-05-23 08h35 +00:00 A heap buffer overflow was discovered in copy_compressed_bytes in decode_r2007.c in dwgread before 0.12.4 via a crafted dwg file.
8.8
High
CVE-2020-21819 2021-05-17 16h55 +00:00 A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10.2641via htmlescape ../../programs/escape.c:51.
8.8
High
CVE-2020-21818 2021-05-17 16h50 +00:00 A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10.2641 via htmlescape ../../programs/escape.c:48.
8.8
High
CVE-2020-21817 2021-05-17 16h47 +00:00 A null pointer dereference issue exists in GNU LibreDWG 0.10.2641 via htmlescape ../../programs/escape.c:29. which causes a denial of service (application crash).
6.5
Medium
CVE-2020-21815 2021-05-17 16h45 +00:00 A null pointer deference issue exists in GNU LibreDWG 0.10.2641 via output_TEXT ../../programs/dwg2SVG.c:114, which causes a denial of service (application crash).
6.5
Medium
CVE-2020-21816 2021-05-17 16h41 +00:00 A heab based buffer overflow issue exists in GNU LibreDWG 0.10.2641 via htmlescape ../../programs/escape.c:46.
8.8
High
CVE-2020-21814 2021-05-17 16h13 +00:00 A heap based buffer overflow issue exists in GNU LibreDWG 0.10.2641 via htmlwescape ../../programs/escape.c:97.
8.8
High
CVE-2020-21813 2021-05-17 15h58 +00:00 A heap based buffer overflow issue exists in GNU LibreDWG 0.10.2641 via output_TEXT ../../programs/dwg2SVG.c:114.
7.8
High
CVE-2020-15807 2020-07-17 13h35 +00:00 GNU LibreDWG before 0.11 allows NULL pointer dereferences via crafted input files.
6.5
Medium