CVE-2023-36273

LibreDWG v0.12.5 was discovered to contain a heap buffer overflow via the function bit_calc_CRC at bits.c.
References
Link Resource
https://github.com/LibreDWG/libredwg/issues/677#BUG1 Exploit Issue Tracking Third Party Advisory
https://github.com/LibreDWG/libredwg/issues/677#BUG1 Exploit Issue Tracking Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:gnu:libredwg:0.12.5:*:*:*:*:*:*:*

History

21 Nov 2024, 08:09

Type Values Removed Values Added
References () https://github.com/LibreDWG/libredwg/issues/677#BUG1 - Exploit, Issue Tracking, Third Party Advisory () https://github.com/LibreDWG/libredwg/issues/677#BUG1 - Exploit, Issue Tracking, Third Party Advisory

27 Jun 2023, 12:42

Type Values Removed Values Added
CPE cpe:2.3:a:gnu:libredwg:0.12.5:*:*:*:*:*:*:*
References (MISC) https://github.com/LibreDWG/libredwg/issues/677#BUG1 - (MISC) https://github.com/LibreDWG/libredwg/issues/677#BUG1 - Exploit, Issue Tracking, Third Party Advisory
CWE CWE-787
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 8.8
First Time Gnu
Gnu libredwg

23 Jun 2023, 15:49

Type Values Removed Values Added
New CVE

Information

Published : 2023-06-23 15:15

Updated : 2024-11-21 08:09


NVD link : CVE-2023-36273

Mitre link : CVE-2023-36273

CVE.ORG link : CVE-2023-36273


JSON object : View

Products Affected

gnu

  • libredwg
CWE
CWE-787

Out-of-bounds Write