ALT-PU-2025-17078-1

Package update libredwg in branch sisyphus

Version0.13.3.7849-alt1

Published2025-11-24

Max severityMEDIUM

Severity:

Closed issues (1)

MEDIUM6.5

Heap buffer overflow vulnerability in LibreDWG versions v0.13.3.7571 up to v0.13.3.7835 allows a crafted DWG file to cause a Denial of Service (DoS) via the function decompress_R2004_section at decode.c.

Published: 2026-03-12Modified: 2026-06-17

CVSS 3.xMEDIUM 6.5

CVSS:3.x/CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

References