CVE-2026-9605

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions GNU libredwg versions prior to 0.13.4.8161

Description A heap-based buffer overflow occurs in the Dwgbmp Utility component within the bit read RC() function of the bits.c file. This flaw allows a remote attacker to trigger the overflow through specific manipulation.

Recommendations Apply patch 8f03865f37f5d4ffd616fef802acc980be54d300 to resolve the issue.

Exploit

Fix

Buffer Overflow

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-122

Related Identifiers

BDU:2026-07480

CVE-2026-9605

OPENSUSE-SU-2026:10879-1

Affected Products

Libredwg

CVE-2026-9605

Weakness Enumeration

Related Identifiers

Affected Products

References · 16