Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnu libredwg vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-20909
An issue exists in GNU LibreDWG up to and including 0.9.3. There is a NULL pointer dereference in the function dwg_encode_LWPOLYLINE in dwg.spec.
Gnu Libredwg
NA
CVE-2022-35164
LibreDWG v0.12.4.4608 & commit f2dea29 exists to contain a heap use-after-free via bit_copy_chain.
Gnu Libredwg
4.3
CVSSv2
CVE-2018-14443
get_first_owned_object in dwg.c in GNU LibreDWG 0.5.1036 allows remote malicious users to cause a denial of service (SEGV).
Gnu Libredwg
4.3
CVSSv2
CVE-2018-14471
dwg_obj_block_control_get_block_headers in dwg_api.c in GNU LibreDWG 0.5.1048 allows remote malicious users to cause a denial of service (NULL pointer dereference and SEGV) via a crafted dwg file.
Gnu Libredwg
4.3
CVSSv2
CVE-2018-14524
dwg_decode_eed in decode.c in GNU LibreDWG prior to 0.6 leads to a double free (in dwg_free_eed in free.c) because it does not properly manage the obj->eed value after a free occurs.
Gnu Libredwg
6.8
CVSSv2
CVE-2021-36080
GNU LibreDWG 0.12.3.4163 up to and including 0.12.3.4191 has a double-free in bit_chain_free (called from dwg_encode_MTEXT and dwg_encode_add_object).
Gnu Libredwg
6.8
CVSSv2
CVE-2021-42586
A heap buffer overflow exists in copy_bytes in decode_r2007.c in dwgread prior to 0.12.4 via a crafted dwg file.
Gnu Libredwg
6.8
CVSSv2
CVE-2022-33025
LibreDWG v0.12.4.4608 exists to contain a heap-use-after-free via the function decode_preR13_section at decode_r11.c.
Gnu Libredwg -
6.8
CVSSv2
CVE-2022-33026
LibreDWG v0.12.4.4608 exists to contain a heap buffer overflow via the function bit_calc_CRC at bits.c.
Gnu Libredwg -
6.8
CVSSv2
CVE-2022-33027
LibreDWG v0.12.4.4608 exists to contain a heap-use-after-free via the function dwg_add_handleref at dwg.c.
Gnu Libredwg -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »