CVE-2023-36274 - Exploiting a Heap Buffer Overflow in LibreDWG v.12.5 (bit_write_TF in bits.c) — Deep Dive
LibreDWG is a popular open-source C library for reading and writing DWG (AutoCAD) files. In mid-2023, a serious security vulnerability was assigned: CVE-2023-36274. This issue
CVE-2023-36273 - Exploiting Heap Buffer Overflow in LibreDWG v.12.5’s `bit_calc_CRC` Function
On June 16, 2023, a new vulnerability was disclosed affecting the open source DWG library, LibreDWG. Catalogued as CVE-2023-36273, this issue impacts LibreDWG up to
CVE-2023-1972 - Heap-Based Buffer Overflow in _bfd_elf_slurp_version_tables() Explained with Code Example
In April 2023, a security flaw tracked as CVE-2023-1972 was discovered in the GNU Binary File Descriptor (BFD) library, a part of the GNU Binutils
CVE-2023-29491 - How Malformed Terminfo Files Can Lead to Memory Corruption in ncurses (Before 6.4 20230408)
If you think environment variables and dotfiles are harmless, think again. CVE-2023-29491 is a security vulnerability in the popular ncurses library, and it’s a
CVE-2023-28617 - How org-babel-execute:latex in Org Mode's ob-latex.el Exposed Command Injection Vulnerability
In June 2023, security researchers found a critical vulnerability in the popular Org Mode package for GNU Emacs: CVE-2023-28617. This bug concerns the function org-babel-execute:
Episode
00:00:00
00:00:00