Update librecad to 2.2.0 rc3. Apply fixes to libdxfrw and librecad for CVE-2021-45341, CVE-2021-45342, CVE-2021-45343. This also resolves the issue where some dwg files no longer opened.

This update has been submitted for testing by spot.

10 months ago

This update's test gating status has been changed to 'ignored'.

10 months ago

This update has been pushed to testing.

10 months ago
User Icon vascom commented & provided feedback 10 months ago
karma

Corrupted display of dxf files.

Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.

10 months ago
User Icon vascom commented & provided feedback 10 months ago

Seems that problem in libdxfrw.

This update can be pushed to stable now if the maintainer wishes

10 months ago

This update's test gating status has been changed to 'waiting'.

8 months ago

This update's test gating status has been changed to 'ignored'.

8 months ago

This update's test gating status has been changed to 'waiting'.

7 months ago

This update's test gating status has been changed to 'ignored'.

7 months ago

This update's test gating status has been changed to 'waiting'.

7 months ago

This update's test gating status has been changed to 'ignored'.

7 months ago
User Icon hobbes1069 commented & provided feedback 3 months ago

Has anyone tried libdxfrw 1.1.0-rc1?

This update has been obsoleted by libdxfrw-1.1.0-0.1.rc1.fc35.

3 months ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
-1
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
10 months ago
in testing
10 months ago
BZ#2027148 librecad-2.2.0-rc3 is available
0
0
BZ#2031379 [regression] .dwg file no longer opens
0
0
BZ#2046248 CVE-2021-45341 librecad: buffer overflow in CDataMoji of the jwwlib component allows remote code execution via a crafted JWW document [fedora-all]
0
0
BZ#2046252 CVE-2021-45342 librecad: buffer overflow in CDataList of the jwwlib component allows remote code execution via a crafted JWW document [fedora-all]
0
0
BZ#2046256 CVE-2021-45343 librecad: NULL pointer dereference in the HATCH handling of libdxfrw can lead to DoS via a crafted DXF document [fedora-all]
0
0

Automated Test Results