| शीर्षक | LibreDWG Project LibreDWG <= 0.14, main branch up to commit 6d6a339 (released 2026-04-10) Reachable Assertion (CWE-617) |
|---|
| विवरण | A reachable assertion vulnerability exists in the LibreDWG library, in versions up to and including 0.14, and the main branch up to commit 6d6a339 (2026-04-10). The vulnerability resides in the decompress_R2004_section function within src/decode.c at line 1293. This flaw is caused by inadequate validation of offset and position values when processing maliciously crafted DWG R2004 compressed section input data. During the decompression process, the internal position pointer pos becomes smaller than the expected comp_offset value, violating the assertion constraint (long)pos >= (long)comp_offset. This issue can be triggered by an attacker providing a specially crafted DWG file to the dwgread utility, leading to an assertion failure and immediate program abort (denial of service). |
|---|
| स्रोत | ⚠️ https://github.com/LibreDWG/libredwg/issues/1242 |
|---|
| उपयोगकर्ता | pwn3rd (UID 97480) |
|---|
| सबमिशन | 27/04/2026 05:27 PM (1 महीना पहले) |
|---|
| संयम | 25/05/2026 12:04 PM (28 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 365483 [GNU LibreDWG तक 0.14 Dwgread Utility src/decode.c decompress_R2004_section सेवा अस्वीकार] |
|---|
| अंक | 20 |
|---|