Gnu Libredwg vulnerabilities

CVE-2020-21816 [HIGH] CWE-787 CVE-2020-21816: A heab based buffer overflow issue exists in GNU LibreDWG 0.10.2641 via htmlescape ../../programs/es A heab based buffer overflow issue exists in GNU LibreDWG 0.10.2641 via htmlescape ../../programs/escape.c:46.

CVE-2020-21842 [HIGH] CWE-787 CVE-2020-21842: A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read_2004_section_revhist A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read_2004_section_revhistory ../../src/decode.c:3051.

CVE-2020-21839 [MEDIUM] CWE-401 CVE-2020-21839: An issue was discovered in GNU LibreDWG 0.10. Crafted input will lead to an memory leak in dwg_decod An issue was discovered in GNU LibreDWG 0.10. Crafted input will lead to an memory leak in dwg_decode_eed ../../src/decode.c:3638.

CVE-2020-21817 [MEDIUM] CWE-476 CVE-2020-21817: A null pointer dereference issue exists in GNU LibreDWG 0.10.2641 via htmlescape ../../programs/esca A null pointer dereference issue exists in GNU LibreDWG 0.10.2641 via htmlescape ../../programs/escape.c:29. which causes a denial of service (application crash).

CVE-2020-21835 [MEDIUM] CWE-476 CVE-2020-21835: A null pointer deference issue exists in GNU LibreDWG 0.10 via read_2004_compressed_section ../../sr A null pointer deference issue exists in GNU LibreDWG 0.10 via read_2004_compressed_section ../../src/decode.c:2337.

CVE-2020-21815 [MEDIUM] CWE-476 CVE-2020-21815: A null pointer deference issue exists in GNU LibreDWG 0.10.2641 via output_TEXT ../../programs/dwg2S A null pointer deference issue exists in GNU LibreDWG 0.10.2641 via output_TEXT ../../programs/dwg2SVG.c:114, which causes a denial of service (application crash).

CVE-2020-21834 [MEDIUM] CWE-476 CVE-2020-21834: A null pointer deference issue exists in GNU LibreDWG 0.10 via get_bmp ../../programs/dwgbmp.c:164. A null pointer deference issue exists in GNU LibreDWG 0.10 via get_bmp ../../programs/dwgbmp.c:164.

CVE-2020-15807 [MEDIUM] CWE-476 CVE-2020-15807: GNU LibreDWG before 0.11 allows NULL pointer dereferences via crafted input files. GNU LibreDWG before 0.11 allows NULL pointer dereferences via crafted input files.

CVE-2019-20914 [CRITICAL] CWE-476 CVE-2019-20914: An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the fu An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwg_encode_common_entity_handle_data in common_entity_handle_data.spec.

CVE-2019-20913 [HIGH] CWE-125 CVE-2019-20913: An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffe An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in dwg_encode_entity in common_entity_data.spec.

CVE-2019-20915 [HIGH] CWE-125 CVE-2019-20915: An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffe An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in bit_write_TF in bits.c.

CVE-2019-20909 [HIGH] CWE-476 CVE-2019-20909: An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the fu An issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwg_encode_LWPOLYLINE in dwg.spec.

CVE-2019-20912 [HIGH] CWE-787 CVE-2019-20912: An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a stack overflow i An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a stack overflow in bits.c, possibly related to bit_read_TF.

CVE-2019-20910 [HIGH] CVE-2019-20910: An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffe An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to a heap-based buffer over-read in decode_R13_R2000 in decode.c, a different vulnerability than CVE-2019-20011.

CVE-2019-20911 [MEDIUM] CWE-835 CVE-2019-20911: An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to denial of service An issue was discovered in GNU LibreDWG through 0.9.3. Crafted input will lead to denial of service in bit_calc_CRC in bits.c, related to a for loop.

CVE-2020-6614 [HIGH] CWE-125 CVE-2020-6614: GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bfr_read in decode.c. GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bfr_read in decode.c.

CVE-2020-6612 [HIGH] CWE-125 CVE-2020-6612: GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in copy_compressed_bytes in decode_r2007.c GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in copy_compressed_bytes in decode_r2007.c.

CVE-2020-6609 [HIGH] CWE-125 CVE-2020-6609: GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in read_pages_map in decode_r2007.c. GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in read_pages_map in decode_r2007.c.

CVE-2020-6613 [HIGH] CWE-125 CVE-2020-6613: GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bit_search_sentinel in bits.c. GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bit_search_sentinel in bits.c.

CVE-2020-6611 [MEDIUM] CWE-476 CVE-2020-6611: GNU LibreDWG 0.9.3.2564 has a NULL pointer dereference in get_next_owned_entity in dwg.c. GNU LibreDWG 0.9.3.2564 has a NULL pointer dereference in get_next_owned_entity in dwg.c.