Changelog
librecad (2.1.3-1.3+deb11u1) bullseye-security; urgency=high
* Non-maintainer upload by the Security Team.
* CVE-2021-21898: A code execution vulnerability exists in the
dwgCompressor::decompress18() functionality of LibreCad libdxfrw. A
specially-crafted .dwg file can lead to an out-of-bounds write.
* CVE-2021-21899: A code execution vulnerability exists in the
dwgCompressor::copyCompBytes21 functionality of LibreCad libdxfrw. A
specially-crafted .dwg file can lead to a heap buffer overflow.
* CVE-2021-21900: A code execution vulnerability exists in the
dxfRW::processLType() functionality of LibreCad libdxfrw. A
specially-crafted .dxf file can lead to a use-after-free
vulnerability.
* CVE-2021-45341: Buffer overflow vulnerabilities in CDataMoji of the jwwlib
component of LibreCAD allows an attacker to achieve Remote Code Execution
using a crafted JWW document.
* CVE-2021-45342: Buffer overflow vulnerabilities in CDataList of the jwwlib
component of LibreCAD allows an attacker to achieve Remote Code Execution
using a crafted JWW document.
* CVE-2021-45343: a NULL pointer dereference in the HATCH handling of
libdxfrw allows an attacker to crash the application using a crafted DXF
document.
-- Aron Xu <email address hidden> Mon, 31 Jan 2022 00:32:43 +0800
