CVE-2021-45342

Опубликовано: 25 янв. 2022

Источник: debian

Описание

A buffer overflow vulnerability in CDataList of the jwwlib component of LibreCAD 2.2.0-rc3 and older allows an attacker to achieve Remote Code Execution using a crafted JWW document.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
librecad	fixed	2.1.3-3		package

Примечания

https://github.com/LibreCAD/LibreCAD/issues/1464
https://github.com/LibreCAD/LibreCAD/pull/1465
Fixed by: https://github.com/LibreCAD/LibreCAD/commit/4edcbe72679f95cb60979c77a348c1522a20b0f4

Связанные уязвимости

CVE-2021-45342

CVSS3: 7.8

ubuntu

около 4 лет назад

A buffer overflow vulnerability in CDataList of the jwwlib component of LibreCAD 2.2.0-rc3 and older allows an attacker to achieve Remote Code Execution using a crafted JWW document.

CVE-2021-45342

CVSS3: 7.8

nvd

около 4 лет назад

A buffer overflow vulnerability in CDataList of the jwwlib component of LibreCAD 2.2.0-rc3 and older allows an attacker to achieve Remote Code Execution using a crafted JWW document.

GHSA-jvxq-fmg4-p4w2

CVSS3: 7.8

github

почти 4 года назад

A buffer overflow vulnerability in CDataList of the jwwlib component of LibreCAD 2.2.0-rc3 and older allows an attacker to achieve Remote Code Execution using a crafted JWW document.

openSUSE-SU-2022:10002-1

suse-cvrf

больше 3 лет назад

Security update for librecad

openSUSE-SU-2022:0143-1

suse-cvrf

больше 3 лет назад

Security update for librecad