OSV-2022-657

Import Source

Published

2022-07-31T00:02:03.618698Z

Modified

2023-01-13T00:11:29.004032Z

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=49613

Crash type: Heap-buffer-overflow WRITE {*}
Crash state:
dynapi_set_helper
dwg_dynapi_entity_set_value
dxf_blocks_read

References

Affected packages

Type: GIT
Repo: https://github.com/LibreDWG/libredwg
Events: Introduced

8984c223f14dc81180ca5da66f92e5932992bb5c

Fixed

428d1ed6a874d11b39a34f779140755f087fc9e2

0.12.4.4635

0.12.4.4637

0.12.4.4641

0.12.4.4643

0.12.4.4647

0.12.4.4652

0.12.4.4654

0.12.4.4658

0.12.4.4660

0.12.4.4668

0.12.5.4669

0.12.5.4678

0.12.5.4685

0.12.5.4690

0.12.5.4693

0.12.5.4695

0.12.5.4697

0.12.5.4700

0.12.5.4709

0.12.5.4712

0.12.5.4715

0.12.5.4722

{
    "severity": "HIGH"
}