libdxfrw-1.0.1-3.fc35 and librecad-2.2.0-0.13.rc3.fc35
FEDORA-2022-2e85e6cfc9 created by spot 3 years ago
for Fedora 35
Update librecad to 2.2.0 rc3. Apply fixes to libdxfrw and librecad for CVE-2021-45341, CVE-2021-45342, CVE-2021-45343. This also resolves the issue where some dwg files no longer opened.
This update has been submitted for testing by spot.
BZ#2046248 CVE-2021-45341 librecad: buffer overflow in CDataMoji of the jwwlib component allows remote code execution via a crafted JWW document [fedora-all]
0
0
BZ#2046252 CVE-2021-45342 librecad: buffer overflow in CDataList of the jwwlib component allows remote code execution via a crafted JWW document [fedora-all]
0
0
BZ#2046256 CVE-2021-45343 librecad: NULL pointer dereference in the HATCH handling of libdxfrw can lead to DoS via a crafted DXF document [fedora-all]
This update has been submitted for testing by spot.
This update's test gating status has been changed to 'ignored'.
This update has been pushed to testing.
Corrupted display of dxf files.
Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.
Seems that problem in libdxfrw.
This update can be pushed to stable now if the maintainer wishes
This update's test gating status has been changed to 'waiting'.
This update's test gating status has been changed to 'ignored'.
This update's test gating status has been changed to 'waiting'.
This update's test gating status has been changed to 'ignored'.
This update's test gating status has been changed to 'waiting'.
This update's test gating status has been changed to 'ignored'.
Has anyone tried libdxfrw 1.1.0-rc1?
This update has been obsoleted by libdxfrw-1.1.0-0.1.rc1.fc35.