cbcvebase.
CVE-2019-20011
published 2019-12-27

CVE-2019-20011: An issue was discovered in GNU LibreDWG 0.92. There is a heap-based buffer over-read in decode_R13_R2000 in decode.c.

high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
An issue was discovered in GNU LibreDWG 0.92. There is a heap-based buffer over-read in decode_R13_R2000 in decode.c.

Affected

4 ranges
VendorProductVersion rangeFixed in
gnulibredwg<= 0.9.3
gnulibredwg
opensusebackports_sle
opensuseleap