Vulnerabilities > CVE-2021-36080 - Double Free vulnerability in GNU Libredwg

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

NVD

Published: 2021-07-01

Updated: 2021-07-08

Summary

GNU LibreDWG 0.12.3.4163 through 0.12.3.4191 has a double-free in bit_chain_free (called from dwg_encode_MTEXT and dwg_encode_add_object).

Part	Description	Count
Application	Gnu GNU Libredwg 0.12.3.4163 GNU Libredwg 0.12.3.4165 GNU Libredwg 0.12.3.4167 GNU Libredwg 0.12.3.4173 GNU Libredwg 0.12.3.4176 GNU Libredwg 0.12.3.4178 GNU Libredwg 0.12.3.4180 GNU Libredwg 0.12.3.4185 GNU Libredwg 0.12.3.4189 GNU Libredwg 0.12.3.4191	10