Vulnerability Library

ID
Packages
Summary
Affected versions
Last modified
Fix
OSV-2022-653
  • OSS-Fuzz/libredwg
Heap-double-free in dwg_free_common_entity_data
  • 0.12.4.4635
  • 0.12.4.4637
  • 0.12.4.4641
  • 0.12.4.4643
  • 0.12.4.4647
  • 0.12.4.4652
  • 0.12.4.4654
  • ...
2023-04-01T14:19:24.161144Z No fix available
OSV-2022-388
  • OSS-Fuzz/libredwg
Segv on unknown address in dwg_ref_get_object
  • 0.12.4.4522
  • 0.12.4.4527
  • 0.12.4.4530
  • 0.12.4.4533
  • 0.12.4.4535
  • 0.12.4.4542
  • 0.12.4.4544
  • ...
2023-04-01T14:19:01.029513Z No fix available
OSV-2022-379
  • OSS-Fuzz/libredwg
Segv on unknown address in bit_write_TV
  • 0.12.4.4522
  • 0.12.4.4527
  • 0.12.4.4530
  • 0.12.4.4533
  • 0.12.4.4535
  • 0.12.4.4542
  • 0.12.4.4544
  • ...
2023-04-01T14:18:41.614220Z No fix available
OSV-2022-400
  • OSS-Fuzz/libredwg
Heap-double-free in dwg_free_XRECORD_private
  • 0.12.4.4590
  • 0.12.4.4598
  • 0.12.4.4601
  • 0.12.4.4606
  • 0.12.4.4607
  • 0.12.4.4608
  • 0.12.4.4613
  • ...
2023-04-01T14:18:23.821238Z No fix available
OSV-2022-372
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in dwg_encode_VERTEX_2D
  • 0.12.4.4522
  • 0.12.4.4527
  • 0.12.4.4530
  • 0.12.4.4533
  • 0.12.4.4535
  • 0.12.4.4542
  • 0.12.4.4544
  • ...
2023-04-01T14:18:12.890020Z No fix available
OSV-2022-714
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in dynapi_set_helper
  • 0.12.4.4635
  • 0.12.4.4637
  • 0.12.4.4641
  • 0.12.4.4643
  • 0.12.4.4647
  • 0.12.4.4652
  • 0.12.4.4654
  • ...
2023-04-01T14:15:54.511503Z No fix available
OSV-2022-1259
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in dwg_decode_INSERT_private
  • 0.12.4.4635
  • 0.12.4.4637
  • 0.12.4.4641
  • 0.12.4.4643
  • 0.12.4.4647
  • 0.12.4.4652
  • 0.12.4.4654
  • ...
2023-04-01T14:13:46.252834Z No fix available
OSV-2022-1251
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in bit_read_B
  • 0.12.5.4685
  • 0.12.5.4690
  • 0.12.5.4693
  • 0.12.5.4695
  • 0.12.5.4697
  • 0.12.5.4700
  • 0.12.5.4709
  • ...
2023-04-01T14:12:23.716783Z No fix available
OSV-2022-1252
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in bit_read_BB
  • 0.12.5.4685
  • 0.12.5.4690
  • 0.12.5.4693
  • 0.12.5.4695
  • 0.12.5.4697
  • 0.12.5.4700
  • 0.12.5.4709
  • ...
2023-04-01T14:12:18.016641Z No fix available
OSV-2021-1086
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in dwg_convert_SAB_to_SAT1
  • 0.12.3.4264
  • 0.12.3.4267
  • 0.12.3.4270
  • 0.12.3.4273
  • 0.12.3.4280
  • 0.12.4
  • 0.12.4.4288
  • ...
2023-04-01T14:10:06.525545Z No fix available
OSV-2021-1343
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in get_next_owned_entity
  • 0.12.4.4313
  • 0.12.4.4317
  • 0.12.4.4321
  • 0.12.4.4324
  • 0.12.4.4331
  • 0.12.4.4338
  • 0.12.4.4343
  • ...
2023-04-01T14:09:58.303984Z No fix available
OSV-2022-1198
  • OSS-Fuzz/libredwg
Heap-buffer-overflow in dwg_json_LTYPE
  • 0.12.4.4635
  • 0.12.4.4637
  • 0.12.4.4641
  • 0.12.4.4643
  • 0.12.4.4647
  • 0.12.4.4652
  • 0.12.4.4654
  • ...
2023-04-01T14:09:37.573590Z No fix available
OSV-2021-586
  • OSS-Fuzz/kimageformats
Use-of-uninitialized-value in void intra_prediction_angular<unsigned short>
  • v5.80.0
  • v5.80.0-rc1
  • v5.81.0
  • v5.81.0-rc1
  • v5.81.0-rc2
  • v5.82.0-rc1
  • v5.83.0
  • ...
2023-04-01T14:09:35.383865Z No fix available
OSV-2021-525
  • OSS-Fuzz/kimageformats
Use-of-uninitialized-value in void edge_filtering_chroma_internal<unsigned char>
  • v5.80.0
  • v5.80.0-rc1
  • v5.81.0
  • v5.81.0-rc1
  • v5.81.0-rc2
  • v5.82.0
  • v5.82.0-rc1
  • ...
2023-04-01T14:09:29.519211Z No fix available
OSV-2022-1176
  • OSS-Fuzz/libredwg
Heap-double-free in dwg_free
  • 0.12.4.4590
  • 0.12.4.4598
  • 0.12.4.4601
  • 0.12.4.4606
  • 0.12.4.4607
  • 0.12.4.4608
  • 0.12.4.4613
  • ...
2023-04-01T14:08:05.197680Z No fix available
OSV-2022-1174
  • OSS-Fuzz/karchive
Heap-buffer-overflow in crc64_clmul
  • v5.101.0
  • v5.101.0-rc1
  • v5.102.0
  • v5.102.0-rc1
  • v5.103.0
  • v5.103.0-rc1
  • v5.104.0-rc1
  • ...
2023-04-01T14:06:56.844570Z No fix available