Описание
An issue was discovered in GNU LibreDWG 0.92. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_LWPOLYLINE_private in dwg.spec.
An issue was discovered in GNU LibreDWG 0.92. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_LWPOLYLINE_private in dwg.spec.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2019-20015
- https://github.com/LibreDWG/libredwg/issues/176
- https://github.com/LibreDWG/libredwg/issues/176#issuecomment-568643028
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00033.html
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00045.html
EPSS
Процентиль: 68%
0.00577
Низкий
CVE ID
Связанные уязвимости
CVSS3: 6.5
nvd
около 6 лет назад
An issue was discovered in GNU LibreDWG 0.92. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_LWPOLYLINE_private in dwg.spec.
CVSS3: 6.5
debian
около 6 лет назад
An issue was discovered in GNU LibreDWG 0.92. Crafted input will lead ...
EPSS
Процентиль: 68%
0.00577
Низкий