CVE-2021-39530: Buffer Overflow
First published: Mon Sep 20 2021(Updated: )
An issue was discovered in libredwg through v0.10.1.3751. bit_wcs2nlen() in bits.c has a heap-based buffer overflow.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| GNU LibreDWG | <=0.10.1.3751 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the CVE ID of this vulnerability?
The CVE ID of this vulnerability is CVE-2021-39530.
What is the severity level of CVE-2021-39530?
The severity level of CVE-2021-39530 is high (8.8).
What is the affected software version?
The affected software version is GNU LibreDWG up to and including v0.10.1.3751.
What is the description of this vulnerability?
This vulnerability is a heap-based buffer overflow in bit_wcs2nlen() function of libredwg.
Is there a fix available for this vulnerability?
At the time of writing, there is no available fix for this vulnerability. It is recommended to follow the recommendations provided by the software vendor or the CVE advisory.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/remedy
- agent/last-modified-date
- agent/weakness
- agent/tags
- agent/author
- agent/description
- agent/first-publish-date
- agent/references
- agent/event
- agent/source
- vendor/gnu
- canonical/gnu libredwg
- version/gnu libredwg/0.10.1.3751