Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnu libredwg vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2021-28237
LibreDWG v0.12.3 exists to contain a heap-buffer overflow via decode_preR13.
Gnu Libredwg 0.12.3
4.3
CVSSv2
CVE-2021-39521
An issue exists in libredwg through v0.10.1.3751. A NULL pointer dereference exists in the function bit_read_BB() located in bits.c. It allows an malicious user to cause Denial of Service.
Gnu Libredwg
4.3
CVSSv2
CVE-2021-39523
An issue exists in libredwg through v0.10.1.3751. A NULL pointer dereference exists in the function check_POLYLINE_handles() located in decode.c. It allows an malicious user to cause Denial of Service.
Gnu Libredwg
6.8
CVSSv2
CVE-2021-39528
An issue exists in libredwg through v0.10.1.3751. dwg_free_MATERIAL_private() in dwg.spec has a double free.
Gnu Libredwg
6.8
CVSSv2
CVE-2021-39522
An issue exists in libredwg through v0.10.1.3751. bit_wcs2len() in bits.c has a heap-based buffer overflow.
Gnu Libredwg
6.8
CVSSv2
CVE-2021-39525
An issue exists in libredwg through v0.10.1.3751. bit_read_fixed() in bits.c has a heap-based buffer overflow.
Gnu Libredwg
6.8
CVSSv2
CVE-2021-39527
An issue exists in libredwg through v0.10.1.3751. appinfo_private() in decode.c has a heap-based buffer overflow.
Gnu Libredwg
6.8
CVSSv2
CVE-2021-39530
An issue exists in libredwg through v0.10.1.3751. bit_wcs2nlen() in bits.c has a heap-based buffer overflow.
Gnu Libredwg
6.8
CVSSv2
CVE-2021-36080
GNU LibreDWG 0.12.3.4163 up to and including 0.12.3.4191 has a double-free in bit_chain_free (called from dwg_encode_MTEXT and dwg_encode_add_object).
Gnu Libredwg
4.3
CVSSv2
CVE-2020-23861
A heap-based buffer overflow vulnerability exists in LibreDWG 0.10.1 via the read_system_page function at libredwg-0.10.1/src/decode_r2007.c:666:5, which causes a denial of service by submitting a dwg file.
Gnu Libredwg 0.10.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »