Filtered by vendor Gnu
Subscriptions
Filtered by product Libredwg
Subscriptions
Total
87 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-21832 | 1 Gnu | 1 Libredwg | 2024-08-04 | 8.8 High |
| A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read_2004_compressed_section ../../src/decode.c:2417. | ||||
| CVE-2020-21814 | 1 Gnu | 1 Libredwg | 2024-08-04 | 8.8 High |
| A heap based buffer overflow issue exists in GNU LibreDWG 0.10.2641 via htmlwescape ../../programs/escape.c:97. | ||||
| CVE-2020-21835 | 1 Gnu | 1 Libredwg | 2024-08-04 | 6.5 Medium |
| A null pointer deference issue exists in GNU LibreDWG 0.10 via read_2004_compressed_section ../../src/decode.c:2337. | ||||
| CVE-2020-21841 | 1 Gnu | 1 Libredwg | 2024-08-04 | 8.8 High |
| A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bit_read_B ../../src/bits.c:135. | ||||
| CVE-2020-21840 | 1 Gnu | 1 Libredwg | 2024-08-04 | 8.8 High |
| A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bit_search_sentinel ../../src/bits.c:1985. | ||||
| CVE-2020-21817 | 1 Gnu | 1 Libredwg | 2024-08-04 | 6.5 Medium |
| A null pointer dereference issue exists in GNU LibreDWG 0.10.2641 via htmlescape ../../programs/escape.c:29. which causes a denial of service (application crash). | ||||
| CVE-2020-21815 | 1 Gnu | 1 Libredwg | 2024-08-04 | 6.5 Medium |
| A null pointer deference issue exists in GNU LibreDWG 0.10.2641 via output_TEXT ../../programs/dwg2SVG.c:114, which causes a denial of service (application crash). | ||||
| CVE-2020-21836 | 1 Gnu | 1 Libredwg | 2024-08-04 | 8.8 High |
| A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read_2004_section_preview ../../src/decode.c:3175. | ||||
| CVE-2020-21816 | 1 Gnu | 1 Libredwg | 2024-08-04 | 8.8 High |
| A heab based buffer overflow issue exists in GNU LibreDWG 0.10.2641 via htmlescape ../../programs/escape.c:46. | ||||
| CVE-2020-21833 | 1 Gnu | 1 Libredwg | 2024-08-04 | 8.8 High |
| A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via: read_2004_section_classes ../../src/decode.c:2440. | ||||
| CVE-2020-15807 | 1 Gnu | 1 Libredwg | 2024-08-04 | 6.5 Medium |
| GNU LibreDWG before 0.11 allows NULL pointer dereferences via crafted input files. | ||||
| CVE-2020-6614 | 2 Gnu, Opensuse | 3 Libredwg, Backports Sle, Leap | 2024-08-04 | 8.1 High |
| GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bfr_read in decode.c. | ||||
| CVE-2020-6611 | 2 Gnu, Opensuse | 3 Libredwg, Backports Sle, Leap | 2024-08-04 | 6.5 Medium |
| GNU LibreDWG 0.9.3.2564 has a NULL pointer dereference in get_next_owned_entity in dwg.c. | ||||
| CVE-2020-6612 | 2 Gnu, Opensuse | 3 Libredwg, Backports Sle, Leap | 2024-08-04 | 8.1 High |
| GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in copy_compressed_bytes in decode_r2007.c. | ||||
| CVE-2020-6613 | 2 Gnu, Opensuse | 3 Libredwg, Backports Sle, Leap | 2024-08-04 | 8.1 High |
| GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bit_search_sentinel in bits.c. | ||||
| CVE-2020-6615 | 2 Gnu, Opensuse | 3 Libredwg, Backports Sle, Leap | 2024-08-04 | 6.5 Medium |
| GNU LibreDWG 0.9.3.2564 has an invalid pointer dereference in dwg_dynapi_entity_value in dynapi.c (dynapi.c is generated by gen-dynapi.pl). | ||||
| CVE-2020-6610 | 2 Gnu, Opensuse | 3 Libredwg, Backports, Leap | 2024-08-04 | 6.5 Medium |
| GNU LibreDWG 0.9.3.2564 has an attempted excessive memory allocation in read_sections_map in decode_r2007.c. | ||||
| CVE-2020-6609 | 2 Gnu, Opensuse | 3 Libredwg, Backports Sle, Leap | 2024-08-04 | 8.8 High |
| GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in read_pages_map in decode_r2007.c. | ||||
| CVE-2021-45950 | 1 Gnu | 1 Libredwg | 2024-08-04 | 6.5 Medium |
| LibreDWG 0.12.4.4313 through 0.12.4.4367 has an out-of-bounds write in dwg_free_BLOCK_private (called from dwg_free_BLOCK and dwg_free_object). | ||||
| CVE-2021-42586 | 1 Gnu | 1 Libredwg | 2024-08-04 | 8.8 High |
| A heap buffer overflow was discovered in copy_bytes in decode_r2007.c in dwgread before 0.12.4 via a crafted dwg file. | ||||