Vulnerability Name:

CVE-2020-6614 (CCN-174134)

Assigned:2020-01-02
Published:2020-01-02
Updated:2022-09-12
Summary:GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bfr_read in decode.c.
CVSS v3 Severity:8.1 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H)
7.0 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H/E:P/RL:O/RC:R)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): High
6.1 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H)
5.3 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H/E:P/RL:O/RC:R)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:5.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): Partial
5.2 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:P/I:N/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): Complete
Vulnerability Type:CWE-125
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2020-6614

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2020:0096

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2020:0115

Source: XF
Type: UNKNOWN
libredwg-cve20206614-info-disc(174134)

Source: CCN
Type: GitHub Web site
Several bugs found by fuzzing #179

Source: MISC
Type: Exploit, Third Party Advisory
https://github.com/LibreDWG/libredwg/issues/179#issuecomment-570447068

Vulnerable Configuration:Configuration 1:
  • cpe:/a:gnu:libredwg:0.9.3.2564:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/o:opensuse:leap:15.1:*:*:*:*:*:*:*
  • OR cpe:/a:opensuse:backports_sle:15.0:sp1:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:gnu:libredwg:0.9.3.2564:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:64895
    P
    		Security update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-operator-container (Important)
    2022-01-10
    oval:org.opensuse.security:def:64623
    P
    		Security update for speex (Moderate)
    2021-12-01
    oval:org.opensuse.security:def:20206614
    V
    		CVE-2020-6614
    2021-10-24
    oval:org.opensuse.security:def:64783
    P
    		Security update for python (Moderate)
    2021-10-20
    oval:org.opensuse.security:def:63471
    P
    		flac-1.3.2-3.6.1 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:63000
    P
    		cross-nvptx-gcc7-7.5.0+r278197-4.25.1 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:64725
    P
    		Security update for the Linux Kernel (Important)
    2021-06-28
    oval:org.opensuse.security:def:64516
    P
    		Security update for dhcp (Important)
    2021-06-02
    oval:org.opensuse.security:def:64515
    P
    		Security update for gdk-pixbuf (Moderate)
    2021-01-21
    oval:org.opensuse.security:def:62968
    P
    		ocaml-4.05.0-13.5 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:63178
    P
    		rarpd-s20161105-6.10 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:62972
    P
    		perl-Archive-Extract-0.80-1.24 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:62975
    P
    		perl-Mail-SpamAssassin-Plugin-iXhash2-2.05-12.5.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:63674
    P
    		Security update for freeradius-server (Important)
    2020-12-01
    oval:org.opensuse.security:def:74970
    P
    		Security update for libredwg (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:63821
    P
    		Security update for libseccomp (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:64050
    P
    		Security update for ghostscript (Important)
    2020-12-01
    oval:org.opensuse.security:def:74837
    P
    		Security update for ruby2.5 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:64379
    P
    		librsync-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:100212
    P
    		 (Important)
    2020-07-24
    oval:org.opensuse.security:def:93499
    P
    		Security update for libredwg (Moderate)
    2020-01-28
    oval:org.opensuse.security:def:110632
    P
    		Security update for libredwg (Moderate)
    2020-01-23
    BACK
    gnu libredwg 0.9.3.2564
    opensuse leap 15.1
    opensuse backports sle 15.0 sp1
    gnu libredwg 0.9.3.2564