A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bit_read_RC ../../src/bits.c:318.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-21843
Reference (s):
- http://gnu.com
- https://github.com/LibreDWG/libredwg/issues/188#issuecomment-574493857