Vulnerabilities > GNU

DATE CVE VULNERABILITY TITLE RISK
2021-05-18 CVE-2020-23861 Out-of-bounds Write vulnerability in GNU Libredwg 0.10.1
A heap-based buffer overflow vulnerability exists in LibreDWG 0.10.1 via the read_system_page function at libredwg-0.10.1/src/decode_r2007.c:666:5, which causes a denial of service by submitting a dwg file.
local
low complexity
gnu CWE-787
5.5
5.5
2021-05-18 CVE-2020-23856 Use After Free vulnerability in multiple products
Use-after-Free vulnerability in cflow 1.6 in the void call(char *name, int line) function at src/parser.c, which could cause a denial of service via the pointer variable caller->callee.
local
low complexity
gnu fedoraproject CWE-416
5.5
5.5
2021-05-17 CVE-2020-21831 Out-of-bounds Write vulnerability in GNU Libredwg 0.10
A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read_2004_section_handles ../../src/decode.c:2637.
network
low complexity
gnu CWE-787
8.8
8.8
2021-05-17 CVE-2020-21842 Out-of-bounds Write vulnerability in GNU Libredwg 0.10
A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read_2004_section_revhistory ../../src/decode.c:3051.
network
low complexity
gnu CWE-787
8.8
8.8
2021-05-17 CVE-2020-21843 Out-of-bounds Write vulnerability in GNU Libredwg 0.10
A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bit_read_RC ../../src/bits.c:318.
network
low complexity
gnu CWE-787
8.8
8.8
2021-05-17 CVE-2020-21844 Unspecified vulnerability in GNU Libredwg 0.10
GNU LibreDWG 0.10 is affected by: memcpy-param-overlap.
network
low complexity
gnu
8.8
8.8
2021-05-17 CVE-2020-21830 Out-of-bounds Write vulnerability in GNU Libredwg 0.10
A heap based buffer overflow vulneraibility exists in GNU LibreDWG 0.10 via bit_calc_CRC ../../src/bits.c:2213.
network
low complexity
gnu CWE-787
8.8
8.8
2021-05-17 CVE-2020-21832 Out-of-bounds Write vulnerability in GNU Libredwg 0.10
A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read_2004_compressed_section ../../src/decode.c:2417.
network
low complexity
gnu CWE-787
8.8
8.8
2021-05-17 CVE-2020-21833 Out-of-bounds Write vulnerability in GNU Libredwg 0.10
A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via: read_2004_section_classes ../../src/decode.c:2440.
network
low complexity
gnu CWE-787
8.8
8.8
2021-05-17 CVE-2020-21834 NULL Pointer Dereference vulnerability in GNU Libredwg 0.10
A null pointer deference issue exists in GNU LibreDWG 0.10 via get_bmp ../../programs/dwgbmp.c:164.
network
low complexity
gnu CWE-476
6.5
6.5