CVE-2020-21840 – A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via

A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bit_search_sentinel ../../src/bits.c:1985.

 

Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-21840

Reference (s):

• http://gnu.com
• http://libredwg.com
• https://github.com/LibreDWG/libredwg/issues/188#issuecomment-574493513