Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnu libredwg vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-36080
GNU LibreDWG 0.12.3.4163 up to and including 0.12.3.4191 has a double-free in bit_chain_free (called from dwg_encode_MTEXT and dwg_encode_add_object).
Gnu Libredwg
6.5
CVSSv3
CVE-2021-39523
An issue exists in libredwg through v0.10.1.3751. A NULL pointer dereference exists in the function check_POLYLINE_handles() located in decode.c. It allows an malicious user to cause Denial of Service.
Gnu Libredwg
8.8
CVSSv3
CVE-2021-39527
An issue exists in libredwg through v0.10.1.3751. appinfo_private() in decode.c has a heap-based buffer overflow.
Gnu Libredwg
7.5
CVSSv3
CVE-2023-26157
Versions of the package libredwg prior to 0.12.5.6384 are vulnerable to Denial of Service (DoS) due to an out-of-bounds read involving section->num_pages in decode_r2007.c.
Gnu Libredwg
7.8
CVSSv3
CVE-2022-33025
LibreDWG v0.12.4.4608 exists to contain a heap-use-after-free via the function decode_preR13_section at decode_r11.c.
Gnu Libredwg -
7.8
CVSSv3
CVE-2022-33027
LibreDWG v0.12.4.4608 exists to contain a heap-use-after-free via the function dwg_add_handleref at dwg.c.
Gnu Libredwg -
7.8
CVSSv3
CVE-2022-33032
LibreDWG v0.12.4.4608 exists to contain a heap-buffer-overflow via the function decode_preR13_section_hdr at decode_r11.c.
Gnu Libredwg -
9.8
CVSSv3
CVE-2022-35164
LibreDWG v0.12.4.4608 & commit f2dea29 exists to contain a heap use-after-free via bit_copy_chain.
Gnu Libredwg
6.5
CVSSv3
CVE-2021-39521
An issue exists in libredwg through v0.10.1.3751. A NULL pointer dereference exists in the function bit_read_BB() located in bits.c. It allows an malicious user to cause Denial of Service.
Gnu Libredwg
8.8
CVSSv3
CVE-2021-39528
An issue exists in libredwg through v0.10.1.3751. dwg_free_MATERIAL_private() in dwg.spec has a double free.
Gnu Libredwg
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »