Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2021-21899

A code execution vulnerability exists in the dwgCompressor::copyCompBytes21 functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. A specially-crafted .dwg file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.

See the

CVE page on Mitre.org for more details.

References

MISC: https://talosintellige...
FEDORA: FEDORA-2021-fa9e3c23f2
FEDORA: FEDORA-2021-67c946a9f3
MLIST: [debian-lts-announce] ...
DEBIAN: DSA-5077
GENTOO: GLSA-202305-26

Launchpad.net

CVE 2021-21899

Related bugs

References