obsolete

libdxfrw-1.0.1-1.fc33 and librecad-2.2.0-0.11.rc2.fc33

FEDORA-2021-49ed4be7d5 created by spot a year ago for Fedora 33

Update libdxfrw to 1.0.1 (from upstream git). Rebuild librecad against it.

This fixes CVE-2021-21898, CVE-2021-21899, and CVE-2021-21900.

This update has been submitted for testing by spot.

a year ago

This update's test gating status has been changed to 'ignored'.

a year ago

This update has been pushed to testing.

a year ago

This update has been submitted for stable by bodhi.

a year ago

This update is marked obsolete because the F33 release is archived.

a year ago

Please login to add feedback.

Metadata
Type
security
Severity
high
Karma
0
Signed
Content Type
RPM
Test Gating
Builds
2
libdxfrw-1.0.1-1.fc33
librecad-2.2.0-0.11.rc2.fc33
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
a year ago
in testing
a year ago
BZ#2025628 CVE-2021-21899 librecad: heap out-of-bounds write in dwgCompressor:copyCompBytes21
0
0
BZ#2025629 CVE-2021-21899 librecad: heap out-of-bounds write in dwgCompressor:copyCompBytes21 [fedora-all]
0
0
BZ#2025631 CVE-2021-21900 librecad: use-after-free in dxfRW:processLType()
0
0
BZ#2025633 CVE-2021-21900 librecad: use-after-free in dxfRW:processLType() [fedora-all]
0
0
BZ#2025634 CVE-2021-21898 librecad: out-of-bounds write in dwgCompressor:decompress18()
0
0
BZ#2025636 CVE-2021-21898 librecad: out-of-bounds write in dwgCompressor:decompress18() [fedora-all]
0
0
libdxfrw-1.0.1-1.fc33
librecad-2.2.0-0.11.rc2.fc33

Automated Test Results

Copyright © 2007-2023 Red Hat, Inc. and others.

Running bodhi-server 7.2.1 on bodhi-web-86-nxdz4.

bodhi is Free Software. Please file issues if you have any problems. Read the documentation.

Composes Legal Privacy policy