{"id":"CVE-2020-21843","details":"A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via bit_read_RC ../../src/bits.c:318.","modified":"2026-07-08T05:56:36.125589937Z","published":"2021-05-17T22:15:07.437Z","database_specific":{},"references":[{"type":"WEB","url":"http://gnu.com"},{"type":"FIX","url":"https://github.com/LibreDWG/libredwg/issues/188#issuecomment-574493857"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/libredwg/libredwg","events":[{"introduced":"d5a51c01023d5585ddf3dd17c83dbb3c81efc97e"},{"last_affected":"d5a51c01023d5585ddf3dd17c83dbb3c81efc97e"}],"database_specific":{"source":"CPE_STRING","cpe":"cpe:2.3:a:gnu:libredwg:0.10:*:*:*:*:*:*:*","extracted_events":[{"introduced":"0.10"},{"last_affected":"0.10"}]}}],"versions":["0.10"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-21843.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}