Vulnerability Details CVE-2020-6610
GNU LibreDWG 0.9.3.2564 has an attempted excessive memory allocation in read_sections_map in decode_r2007.c.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 66.0%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.3
References
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00046.html
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00052.html
- https://github.com/LibreDWG/libredwg/issues/179#issuecomment-570447120
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00046.html
- http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00052.html
- https://github.com/LibreDWG/libredwg/issues/179#issuecomment-570447120