librecad 2.1.2-1ubuntu0.1 source package in Ubuntu
Changelog
librecad (2.1.2-1ubuntu0.1) bionic-security; urgency=medium
* SECURITY UPDATE: DoS due to write access violation in libdxfrw
- debian/patches/CVE-2018-19105.patch: prevent write access
violation when a malicious DXF is read in
libraries/libdxfrw/src/drw_header.cpp and
libraries/libdxfrw/src/libdxfrw.cpp.
- CVE-2018-19105
* SECURITY UPDATE: code execution due to heap overflow in copyCompBytes18
- debian/patches/CVE-2021-21898.patch: perform bound checking when
processing a DWG file through dwgCompressor::decompress18 in
src/intern/dwgreader18.cpp, src/intern/dwgreader18.h,
src/intern/dwgutil.cpp and src/intern/dwgutil.h.
- CVE-2021-21898
* SECURITY UPDATE: code execution due to heap overflow in copyCompBytes21
- debian/patches/CVE-2021-21899.patch: perform bound checking when
processing a DWG file through dwgCompressor::decompress21 in
src/intern/dwgreader21.cpp, src/intern/dwgutil.cpp and
src/intern/dwgutil.h.
- CVE-2021-21899
* SECURITY UPDATE: heap use-after-free in DRW_TableEntry::parseCode
- debian/patches/CVE-2021-21900.patch: allow any coordinate order
in when processing a DRW file through DRW_TableEntry::parseCode
in src/drw_objects.cpp and src/drw_objects.h.
- CVE-2021-21900
* SECURITY UPDATE: code execution due to stack overflow in CDataMoji
- debian/patches/CVE-2021-45341.patch: perform bound checking
when processing JWW files in libraries/jwwlib/src/jwwdoc.h.
- CVE-2021-45341
* SECURITY UPDATE: code execution due to stack overflow in CDataList
- debian/patches/CVE-2021-45342.patch: perform bound checking
when processing JWW files in libraries/jwwlib/src/jwwdoc.h.
- CVE-2021-45342
* SECURITY UPDATE: DoS due to NULL pointer dereference in DXF parser
- debian/patches/CVE-2021-45343.patch: add NULL check when
handling hatch code 93 in
libraries/libdxfrw/src/drw_entities.cpp.
- CVE-2021-45343
-- David Fernandez Gonzalez <email address hidden> Mon, 13 Mar 2023 09:44:40 +0100
Upload details
- Uploaded by:
- David Fernandez Gonzalez
- Uploaded to:
- Bionic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- graphics
- Urgency:
- Medium Urgency
See full publishing history Publishing
| Series | Published | Component | Section | |
|---|---|---|---|---|
| Bionic | updates | universe | graphics | |
| Bionic | security | universe | graphics |
Downloads
| File | Size | SHA-256 Checksum |
|---|---|---|
| librecad_2.1.2.orig.tar.gz | 21.4 MiB | 12ece7102c9406b28acf5901e20e7940c44b570957d24599793c90c38d882d3e |
| librecad_2.1.2-1ubuntu0.1.debian.tar.xz | 17.1 KiB | e94963e927423a18e7c31a296c202acc95e16843eedf1674a10d61a00dbf7996 |
| librecad_2.1.2-1ubuntu0.1.dsc | 2.3 KiB | 09b6df1466bce8c83dd76153f5ac97cee83e9f3254eff5d0d9bfa22fbcc8c05f |
Available diffs
- diff from 2.1.2-1+deb9u3build0.18.04.1~test1 to 2.1.2-1ubuntu0.1 (pending)
Binary packages built by this source
- librecad: Computer-aided design (CAD) system
LibreCAD is an application for computer aided design (CAD) in two
dimensions (2D). With LibreCAD you can create technical drawings such as
plans for buildings, interiors, mechanical parts or schematics and
diagrams.
- librecad-data: Computer-aided design (CAD) system -- shared files
LibreCAD is an application for computer aided design (CAD) in two
dimensions (2D).
.
This package contains platform independent files for LibreCAD, including
fonts, patterns, and interface translations.
- librecad-dbgsym: debug symbols for librecad
