librecad 2.1.2-1ubuntu0.1 source package in Ubuntu
Changelog
librecad (2.1.2-1ubuntu0.1) bionic-security; urgency=medium * SECURITY UPDATE: DoS due to write access violation in libdxfrw - debian/patches/CVE-2018-19105.patch: prevent write access violation when a malicious DXF is read in libraries/libdxfrw/src/drw_header.cpp and libraries/libdxfrw/src/libdxfrw.cpp. - CVE-2018-19105 * SECURITY UPDATE: code execution due to heap overflow in copyCompBytes18 - debian/patches/CVE-2021-21898.patch: perform bound checking when processing a DWG file through dwgCompressor::decompress18 in src/intern/dwgreader18.cpp, src/intern/dwgreader18.h, src/intern/dwgutil.cpp and src/intern/dwgutil.h. - CVE-2021-21898 * SECURITY UPDATE: code execution due to heap overflow in copyCompBytes21 - debian/patches/CVE-2021-21899.patch: perform bound checking when processing a DWG file through dwgCompressor::decompress21 in src/intern/dwgreader21.cpp, src/intern/dwgutil.cpp and src/intern/dwgutil.h. - CVE-2021-21899 * SECURITY UPDATE: heap use-after-free in DRW_TableEntry::parseCode - debian/patches/CVE-2021-21900.patch: allow any coordinate order in when processing a DRW file through DRW_TableEntry::parseCode in src/drw_objects.cpp and src/drw_objects.h. - CVE-2021-21900 * SECURITY UPDATE: code execution due to stack overflow in CDataMoji - debian/patches/CVE-2021-45341.patch: perform bound checking when processing JWW files in libraries/jwwlib/src/jwwdoc.h. - CVE-2021-45341 * SECURITY UPDATE: code execution due to stack overflow in CDataList - debian/patches/CVE-2021-45342.patch: perform bound checking when processing JWW files in libraries/jwwlib/src/jwwdoc.h. - CVE-2021-45342 * SECURITY UPDATE: DoS due to NULL pointer dereference in DXF parser - debian/patches/CVE-2021-45343.patch: add NULL check when handling hatch code 93 in libraries/libdxfrw/src/drw_entities.cpp. - CVE-2021-45343 -- David Fernandez Gonzalez <email address hidden> Mon, 13 Mar 2023 09:44:40 +0100
Upload details
- Uploaded by:
- David Fernandez Gonzalez
- Uploaded to:
- Bionic
- Original maintainer:
- Ubuntu Developers
- Architectures:
- any all
- Section:
- graphics
- Urgency:
- Medium Urgency
See full publishing history Publishing
Series | Published | Component | Section | |
---|---|---|---|---|
Bionic | updates | universe | graphics | |
Bionic | security | universe | graphics |
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
librecad_2.1.2.orig.tar.gz | 21.4 MiB | 12ece7102c9406b28acf5901e20e7940c44b570957d24599793c90c38d882d3e |
librecad_2.1.2-1ubuntu0.1.debian.tar.xz | 17.1 KiB | e94963e927423a18e7c31a296c202acc95e16843eedf1674a10d61a00dbf7996 |
librecad_2.1.2-1ubuntu0.1.dsc | 2.3 KiB | 09b6df1466bce8c83dd76153f5ac97cee83e9f3254eff5d0d9bfa22fbcc8c05f |
Available diffs
- diff from 2.1.2-1+deb9u3build0.18.04.1~test1 to 2.1.2-1ubuntu0.1 (pending)
Binary packages built by this source
- librecad: Computer-aided design (CAD) system
LibreCAD is an application for computer aided design (CAD) in two
dimensions (2D). With LibreCAD you can create technical drawings such as
plans for buildings, interiors, mechanical parts or schematics and
diagrams.
- librecad-data: Computer-aided design (CAD) system -- shared files
LibreCAD is an application for computer aided design (CAD) in two
dimensions (2D).
.
This package contains platform independent files for LibreCAD, including
fonts, patterns, and interface translations.
- librecad-dbgsym: debug symbols for librecad