← back
CVE-2019-20009

CVE-2019-20009

EPSS 1.4%
An issue was discovered in GNU LibreDWG before 0.93. Crafted input will lead to an attempted excessive memory allocation in dwg_decode_SPLINE_private in dwg.spec.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00033.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-01/msg00045.htmlhttps://github.com/LibreDWG/libredwg/compare/0.9.2...0.9.3https://github.com/LibreDWG/libredwg/issues/176https://github.com/LibreDWG/libredwg/issues/176#issue-541977765