A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via: read_2004_section_appinfo ../../src/decode.c:2842.
References
Link | Resource |
---|---|
http://libredwg.com | Broken Link |
http://gnu.com | Not Applicable |
https://github.com/LibreDWG/libredwg/issues/188#issuecomment-574492816 | Exploit Issue Tracking Patch Third Party Advisory |
Configurations
Information
Published : 2021-05-17 14:15
Updated : 2021-05-21 11:56
NVD link : CVE-2020-21838
Mitre link : CVE-2020-21838
JSON object : View
CWE
CWE-787
Out-of-bounds Write
Products Affected
gnu
- libredwg