Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libredwg vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2020-6609
GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in read_pages_map in decode_r2007.c.
Gnu Libredwg 0.9.3.2564
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
4.3
CVSSv2
CVE-2020-6610
GNU LibreDWG 0.9.3.2564 has an attempted excessive memory allocation in read_sections_map in decode_r2007.c.
Gnu Libredwg 0.9.3.2564
Opensuse Backports Sle-15
Opensuse Leap 15.1
5.8
CVSSv2
CVE-2020-6612
GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in copy_compressed_bytes in decode_r2007.c.
Gnu Libredwg 0.9.3.2564
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
5.8
CVSSv2
CVE-2020-6613
GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bit_search_sentinel in bits.c.
Gnu Libredwg 0.9.3.2564
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
5.8
CVSSv2
CVE-2020-6614
GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bfr_read in decode.c.
Gnu Libredwg 0.9.3.2564
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
4.3
CVSSv2
CVE-2020-6615
GNU LibreDWG 0.9.3.2564 has an invalid pointer dereference in dwg_dynapi_entity_value in dynapi.c (dynapi.c is generated by gen-dynapi.pl).
Gnu Libredwg 0.9.3.2564
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
4.3
CVSSv2
CVE-2020-6611
GNU LibreDWG 0.9.3.2564 has a NULL pointer dereference in get_next_owned_entity in dwg.c.
Gnu Libredwg 0.9.3.2564
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
4.3
CVSSv2
CVE-2019-20009
An issue exists in GNU LibreDWG prior to 0.93. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_SPLINE_private in dwg.spec.
Gnu Libredwg
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
6.8
CVSSv2
CVE-2019-20010
An issue exists in GNU LibreDWG 0.92. There is a use-after-free in resolve_objectref_vector in decode.c.
Gnu Libredwg 0.9.2
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
6.8
CVSSv2
CVE-2019-20011
An issue exists in GNU LibreDWG 0.92. There is a heap-based buffer over-read in decode_R13_R2000 in decode.c.
Gnu Libredwg 0.9.2
Opensuse Backports Sle 15.0
Opensuse Leap 15.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
NEXT »