openSUSE-SU-2022:0143-1

See a problem?
Import Source
https://ftp.suse.com/pub/projects/security/osv/openSUSE-SU-2022:0143-1.json
JSON Data
https://api.test.osv.dev/v1/vulns/openSUSE-SU-2022:0143-1
Related
Published
2022-05-23T09:05:21Z
Modified
2025-05-08T17:48:02.535214Z
Upstream
Summary
Security update for librecad
Details

This update for librecad fixes the following issues:

  • CVE-2021-45341: Fixed a buffer overflow vulnerability in LibreCAD that allowed an attacker to achieve remote code execution via a crafted JWW document [boo#1195105]
  • CVE-2021-45342: Fixed a buffer overflow vulnerability in jwwlib in LibreCAD allows an attacker to achieve remote code execution via a crafted JWW document [boo#1195122]
References

Affected packages

SUSE:Package Hub 15 SP3 / librecad

Package

Name
librecad
Purl
pkg:rpm/suse/librecad&distro=SUSE%20Package%20Hub%2015%20SP3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2.0~rc3-bp153.2.9.1

Ecosystem specific 

{
    "binaries": [
        {
            "librecad": "2.2.0~rc3-bp153.2.9.1",
            "librecad-parts": "2.2.0~rc3-bp153.2.9.1"
        }
    ]
}

openSUSE:Leap 15.3 / librecad

Package

Name
librecad
Purl
pkg:rpm/opensuse/librecad&distro=openSUSE%20Leap%2015.3

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.2.0~rc3-bp153.2.9.1

Ecosystem specific 

{
    "binaries": [
        {
            "librecad": "2.2.0~rc3-bp153.2.9.1",
            "librecad-parts": "2.2.0~rc3-bp153.2.9.1"
        }
    ]
}