Описание
An issue was discovered in GNU LibreDWG 0.92. There is a heap-based buffer over-read in decode_R13_R2000 in decode.c.
An issue was discovered in GNU LibreDWG 0.92. There is a heap-based buffer over-read in decode_R13_R2000 in decode.c.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2019-20011
- https://github.com/LibreDWG/libredwg/issues/176
- https://github.com/LibreDWG/libredwg/issues/176#issuecomment-568643439
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00033.html
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00045.html
EPSS
Процентиль: 66%
0.0051
Низкий
CVE ID
Связанные уязвимости
CVSS3: 8.8
nvd
около 6 лет назад
An issue was discovered in GNU LibreDWG 0.92. There is a heap-based buffer over-read in decode_R13_R2000 in decode.c.
CVSS3: 8.8
debian
около 6 лет назад
An issue was discovered in GNU LibreDWG 0.92. There is a heap-based bu ...
EPSS
Процентиль: 66%
0.0051
Низкий