Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gnu libredwg vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-20909
An issue exists in GNU LibreDWG up to and including 0.9.3. There is a NULL pointer dereference in the function dwg_encode_LWPOLYLINE in dwg.spec.
Gnu Libredwg
8.1
CVSSv3
CVE-2019-20910
An issue exists in GNU LibreDWG up to and including 0.9.3. Crafted input will lead to a heap-based buffer over-read in decode_R13_R2000 in decode.c, a different vulnerability than CVE-2019-20011.
Gnu Libredwg
6.5
CVSSv3
CVE-2019-20911
An issue exists in GNU LibreDWG up to and including 0.9.3. Crafted input will lead to denial of service in bit_calc_CRC in bits.c, related to a for loop.
Gnu Libredwg
8.8
CVSSv3
CVE-2019-20912
An issue exists in GNU LibreDWG up to and including 0.9.3. Crafted input will lead to a stack overflow in bits.c, possibly related to bit_read_TF.
Gnu Libredwg
8.1
CVSSv3
CVE-2019-20913
An issue exists in GNU LibreDWG up to and including 0.9.3. Crafted input will lead to a heap-based buffer over-read in dwg_encode_entity in common_entity_data.spec.
Gnu Libredwg
9.8
CVSSv3
CVE-2019-20914
An issue exists in GNU LibreDWG up to and including 0.9.3. There is a NULL pointer dereference in the function dwg_encode_common_entity_handle_data in common_entity_handle_data.spec.
Gnu Libredwg
8.1
CVSSv3
CVE-2019-20915
An issue exists in GNU LibreDWG up to and including 0.9.3. Crafted input will lead to a heap-based buffer over-read in bit_write_TF in bits.c.
Gnu Libredwg
9.8
CVSSv3
CVE-2022-35164
LibreDWG v0.12.4.4608 & commit f2dea29 exists to contain a heap use-after-free via bit_copy_chain.
Gnu Libredwg
8.8
CVSSv3
CVE-2021-42585
A heap buffer overflow exists in copy_compressed_bytes in decode_r2007.c in dwgread prior to 0.12.4 via a crafted dwg file.
Gnu Libredwg
8.8
CVSSv3
CVE-2023-25222
A heap-based buffer overflow vulnerability exits in GNU LibreDWG v0.12.5 via the bit_read_RC function at bits.c.
Gnu Libredwg 0.12.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »