CVE-2021-28237
- EPSS 1.36%
- Veröffentlicht 02.12.2021 22:15:08
- Zuletzt bearbeitet 21.11.2024 05:59:23
LibreDWG v0.12.3 was discovered to contain a heap-buffer overflow via decode_preR13.
CVE-2021-28236
- EPSS 1.2%
- Veröffentlicht 02.12.2021 22:15:08
- Zuletzt bearbeitet 21.11.2024 05:59:23
LibreDWG v0.12.3 was discovered to contain a NULL pointer dereference via out_dxfb.c.
CVE-2021-39527
- EPSS 1.03%
- Veröffentlicht 20.09.2021 16:15:12
- Zuletzt bearbeitet 21.11.2024 06:19:36
An issue was discovered in libredwg through v0.10.1.3751. appinfo_private() in decode.c has a heap-based buffer overflow.
CVE-2021-39528
- EPSS 1.04%
- Veröffentlicht 20.09.2021 16:15:12
- Zuletzt bearbeitet 21.11.2024 06:19:37
An issue was discovered in libredwg through v0.10.1.3751. dwg_free_MATERIAL_private() in dwg.spec has a double free.
CVE-2021-39530
- EPSS 1.04%
- Veröffentlicht 20.09.2021 16:15:12
- Zuletzt bearbeitet 21.11.2024 06:19:37
An issue was discovered in libredwg through v0.10.1.3751. bit_wcs2nlen() in bits.c has a heap-based buffer overflow.
CVE-2021-39525
- EPSS 1.03%
- Veröffentlicht 20.09.2021 16:15:11
- Zuletzt bearbeitet 21.11.2024 06:19:36
An issue was discovered in libredwg through v0.10.1.3751. bit_read_fixed() in bits.c has a heap-based buffer overflow.
CVE-2021-39523
- EPSS 0.83%
- Veröffentlicht 20.09.2021 16:15:11
- Zuletzt bearbeitet 21.11.2024 06:19:36
An issue was discovered in libredwg through v0.10.1.3751. A NULL pointer dereference exists in the function check_POLYLINE_handles() located in decode.c. It allows an attacker to cause Denial of Service.
CVE-2021-39522
- EPSS 1.04%
- Veröffentlicht 20.09.2021 16:15:11
- Zuletzt bearbeitet 21.11.2024 06:19:36
An issue was discovered in libredwg through v0.10.1.3751. bit_wcs2len() in bits.c has a heap-based buffer overflow.
CVE-2021-39521
- EPSS 0.84%
- Veröffentlicht 20.09.2021 16:15:11
- Zuletzt bearbeitet 21.11.2024 06:19:36
An issue was discovered in libredwg through v0.10.1.3751. A NULL pointer dereference exists in the function bit_read_BB() located in bits.c. It allows an attacker to cause Denial of Service.
CVE-2021-36080
- EPSS 1.33%
- Veröffentlicht 01.07.2021 03:15:08
- Zuletzt bearbeitet 21.11.2024 06:13:06
GNU LibreDWG 0.12.3.4163 through 0.12.3.4191 has a double-free in bit_chain_free (called from dwg_encode_MTEXT and dwg_encode_add_object).