First published: Fri Jul 17 2020(Updated: )
GNU LibreDWG before 0.11 allows NULL pointer dereferences via crafted input files.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
GNU LibreDWG | <0.11 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2020-15807 is classified as medium due to the potential for denial of service through NULL pointer dereferencing.
To fix CVE-2020-15807, upgrade to GNU LibreDWG version 0.11 or later.
CVE-2020-15807 can be exploited via specifically crafted input files that trigger NULL pointer dereferences.
CVE-2020-15807 impacts GNU LibreDWG before version 0.11, affecting its ability to handle certain input files safely.
CVE-2020-15807 is not specifically related to remote attacks but can be triggered by local exploits using crafted files.