CVE-2020-6612
published 2020-01-08CVE-2020-6612: GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in copy_compressed_bytes in decode_r2007.c.
high8.1CVSS 3.1
AVNACLPRNUIRSUCHINAH
GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in copy_compressed_bytes in decode_r2007.c.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| gnu | libredwg | — | — |
| opensuse | backports_sle | — | — |
| opensuse | leap | — | — |