CVE-2019-9774

An issue was discovered in GNU LibreDWG 0.7 and 0.7.1645. There is an out-of-bounds read in the function bit_read_B at bits.c.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:gnu:libredwg:0.7:*:*:*:*:*:*:*
cpe:2.3:a:gnu:libredwg:0.7.1645:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:opensuse:backports_sle:15.0:sp1:*:*:*:*:*:*
cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*

History

21 Nov 2024, 04:52

Type Values Removed Values Added
References () http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00033.html - Third Party Advisory () http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00033.html - Third Party Advisory
References () http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00045.html - Third Party Advisory () http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00045.html - Third Party Advisory
References () http://www.securityfocus.com/bid/107447 - Broken Link, Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/107447 - Broken Link, Third Party Advisory, VDB Entry
References () https://github.com/LibreDWG/libredwg/issues/99 - Exploit, Third Party Advisory () https://github.com/LibreDWG/libredwg/issues/99 - Exploit, Third Party Advisory
References () https://savannah.gnu.org/bugs/index.php?55893 - Third Party Advisory () https://savannah.gnu.org/bugs/index.php?55893 - Third Party Advisory

Information

Published : 2019-03-14 09:29

Updated : 2024-11-21 04:52


NVD link : CVE-2019-9774

Mitre link : CVE-2019-9774

CVE.ORG link : CVE-2019-9774


JSON object : View

Products Affected

gnu

  • libredwg

opensuse

  • leap
  • backports_sle
CWE
CWE-125

Out-of-bounds Read