GNU LibreDWG 0.12.4.4572

CPE Details

GNU LibreDWG 0.12.4.4572
0.12.4.4572
2022-06-29
15h08 +00:00
2022-06-29
15h11 +00:00
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:gnu:libredwg:0.12.4.4572:*:*:*:*:*:*:*

Informations

Vendor

gnu

Product

libredwg

Version

0.12.4.4572

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-26157 2024-01-02 05h00 +00:00 Versions of the package libredwg before 0.12.5.6384 are vulnerable to Denial of Service (DoS) due to an out-of-bounds read involving section->num_pages in decode_r2007.c.
7.5
Haute
CVE-2023-36271 2023-06-23 00h00 +00:00 LibreDWG v0.10 to v0.12.5 was discovered to contain a heap buffer overflow via the function bit_wcs2nlen at bits.c.
8.8
Haute
CVE-2023-36272 2023-06-23 00h00 +00:00 LibreDWG v0.10 to v0.12.5 was discovered to contain a heap buffer overflow via the function bit_utf8_to_TU at bits.c.
8.8
Haute
CVE-2023-36274 2023-06-23 00h00 +00:00 LibreDWG v0.11 to v0.12.5 was discovered to contain a heap buffer overflow via the function bit_write_TF at bits.c.
8.8
Haute
CVE-2022-35164 2022-08-18 02h49 +00:00 LibreDWG v0.12.4.4608 & commit f2dea29 was discovered to contain a heap use-after-free via bit_copy_chain.
9.8
Critique