obsolete

libdxfrw-1.0.1-3.fc35 and librecad-2.2.0-0.13.rc3.fc35

FEDORA-2022-2e85e6cfc9 created by spot 3 years ago for Fedora 35

Update librecad to 2.2.0 rc3. Apply fixes to libdxfrw and librecad for CVE-2021-45341, CVE-2021-45342, CVE-2021-45343. This also resolves the issue where some dwg files no longer opened.

This update has been submitted for testing by spot.

3 years ago

This update's test gating status has been changed to 'ignored'.

3 years ago

This update has been pushed to testing.

3 years ago
User Icon vascom commented & provided feedback 3 years ago
karma

Corrupted display of dxf files.

Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.

3 years ago
User Icon vascom commented & provided feedback 3 years ago

Seems that problem in libdxfrw.

This update can be pushed to stable now if the maintainer wishes

3 years ago

This update's test gating status has been changed to 'waiting'.

2 years ago

This update's test gating status has been changed to 'ignored'.

2 years ago

This update's test gating status has been changed to 'waiting'.

2 years ago

This update's test gating status has been changed to 'ignored'.

2 years ago

This update's test gating status has been changed to 'waiting'.

2 years ago

This update's test gating status has been changed to 'ignored'.

2 years ago
User Icon hobbes1069 commented & provided feedback 2 years ago

Has anyone tried libdxfrw 1.1.0-rc1?

This update has been obsoleted by libdxfrw-1.1.0-0.1.rc1.fc35.

2 years ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
-1
Signed
Content Type
RPM
Test Gating
Autopush Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Thresholds
Minimum Karma
+1
Minimum Testing
7 days
Dates
submitted
3 years ago
in testing
3 years ago
BZ#2027148 librecad-2.2.0-rc3 is available
0
0
BZ#2031379 [regression] .dwg file no longer opens
0
0
BZ#2046248 CVE-2021-45341 librecad: buffer overflow in CDataMoji of the jwwlib component allows remote code execution via a crafted JWW document [fedora-all]
0
0
BZ#2046252 CVE-2021-45342 librecad: buffer overflow in CDataList of the jwwlib component allows remote code execution via a crafted JWW document [fedora-all]
0
0
BZ#2046256 CVE-2021-45343 librecad: NULL pointer dereference in the HATCH handling of libdxfrw can lead to DoS via a crafted DXF document [fedora-all]
0
0

Automated Test Results