OSV-2022-653

Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libredwg/OSV-2022-653.yaml
Published
2022-07-30T00:01:52.491112Z
Modified
2022-11-26T00:15:16.482406Z
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=49602

Crash type: Heap-double-free
Crash state:
dwg_free_common_entity_data
dwg_free_DIMENSION_ANG2LN
dwg_free_object
References

Affected packages

OSS-Fuzz / libredwg

libredwg

Affected ranges

Affected versions

0.*

0.12.4.4635
0.12.4.4637
0.12.4.4641
0.12.4.4643
0.12.4.4647
0.12.4.4652
0.12.4.4654
0.12.4.4658
0.12.4.4660

Ecosystem specific

{
    "severity": "HIGH"
}