openSUSE-SU-2022:10002-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2022:10002-1.json
JSON Data
https://api.osv.dev/v1/vulns/openSUSE-SU-2022:10002-1
Related
Published
2022-05-31T17:32:38Z
Modified
2025-05-07T18:13:25.385487Z
Upstream
Summary
Security update for librecad
Details

This update for librecad fixes the following issues:

  • CVE-2021-45341: Fixed a buffer overflow vulnerability in LibreCAD allows an attacker to achieve remote code execution via a crafted JWW document [boo#1195105]

  • CVE-2021-45342: Fixed a buffer overflow vulnerability in jwwlib in LibreCAD allows an attacker to achieve remote code execution via a crafted JWW document [boo#1195122]

  • Strip excess blank fields from librecad.desktop:MimeType [boo#1197664]

Update to 2.2.0-rc3

  • major release
  • DWG imports are more reliable now
  • and a lot more of bugfixes and improvements
References

Affected packages

SUSE:Package Hub 15 SP4 / libdxfrw

Package

Name
libdxfrw
Purl
pkg:rpm/suse/libdxfrw&distro=SUSE%20Package%20Hub%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.0.1+git.20220109-bp154.2.3.1

Ecosystem specific 

{
    "binaries": [
        {
            "libdxfrw-devel": "1.0.1+git.20220109-bp154.2.3.1",
            "libdxfrw-tools": "1.0.1+git.20220109-bp154.2.3.1",
            "libdxfrw1": "1.0.1+git.20220109-bp154.2.3.1",
            "librecad": "2.2.0~rc3-bp154.3.3.1",
            "librecad-parts": "2.2.0~rc3-bp154.3.3.1"
        }
    ]
}

SUSE:Package Hub 15 SP4 / librecad

Package

Name
librecad
Purl
pkg:rpm/suse/librecad&distro=SUSE%20Package%20Hub%2015%20SP4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2.0~rc3-bp154.3.3.1

Ecosystem specific 

{
    "binaries": [
        {
            "libdxfrw-devel": "1.0.1+git.20220109-bp154.2.3.1",
            "libdxfrw-tools": "1.0.1+git.20220109-bp154.2.3.1",
            "libdxfrw1": "1.0.1+git.20220109-bp154.2.3.1",
            "librecad": "2.2.0~rc3-bp154.3.3.1",
            "librecad-parts": "2.2.0~rc3-bp154.3.3.1"
        }
    ]
}

openSUSE:Leap 15.4 / libdxfrw

Package

Name
libdxfrw
Purl
pkg:rpm/opensuse/libdxfrw&distro=openSUSE%20Leap%2015.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1.0.1+git.20220109-bp154.2.3.1

Ecosystem specific 

{
    "binaries": [
        {
            "libdxfrw-devel": "1.0.1+git.20220109-bp154.2.3.1",
            "libdxfrw-tools": "1.0.1+git.20220109-bp154.2.3.1",
            "libdxfrw1": "1.0.1+git.20220109-bp154.2.3.1",
            "librecad": "2.2.0~rc3-bp154.3.3.1",
            "librecad-parts": "2.2.0~rc3-bp154.3.3.1"
        }
    ]
}

openSUSE:Leap 15.4 / librecad

Package

Name
librecad
Purl
pkg:rpm/opensuse/librecad&distro=openSUSE%20Leap%2015.4

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2.0~rc3-bp154.3.3.1

Ecosystem specific 

{
    "binaries": [
        {
            "libdxfrw-devel": "1.0.1+git.20220109-bp154.2.3.1",
            "libdxfrw-tools": "1.0.1+git.20220109-bp154.2.3.1",
            "libdxfrw1": "1.0.1+git.20220109-bp154.2.3.1",
            "librecad": "2.2.0~rc3-bp154.3.3.1",
            "librecad-parts": "2.2.0~rc3-bp154.3.3.1"
        }
    ]
}