OSV-2022-654

Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libredwg/OSV-2022-654.yaml
Published
2022-07-31T00:00:26.014159Z
Modified
2022-12-13T00:15:49.831271Z
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=49618

Crash type: Heap-buffer-overflow READ 8
Crash state:
dwg_geojson_feature
dwg_geojson_object
dwg_write_geojson
References

Affected packages

OSS-Fuzz / libredwg

Package

Name
libredwg

Affected ranges

Type
GIT
Repo
https://github.com/LibreDWG/libredwg
Events

Affected versions

0.*

0.12.4.4635
0.12.4.4637
0.12.4.4641
0.12.4.4643
0.12.4.4647
0.12.4.4652
0.12.4.4654
0.12.4.4658
0.12.4.4660
0.12.4.4668
0.12.5.4669
0.12.5.4678
0.12.5.4685
0.12.5.4690

Ecosystem specific

{
    "severity": "MEDIUM"
}