VYPR
Medium severity6.5NVD Advisory· Published Mar 12, 2026· Updated Jun 2, 2026

CVE-2025-61154

CVE-2025-61154

Description

Heap buffer overflow vulnerability in LibreDWG versions v0.13.3.7571 up to v0.13.3.7835 allows a crafted DWG file to cause a Denial of Service (DoS) via the function decompress_R2004_section at decode.c.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:gnu:libredwg:*:*:*:*:*:*:*:*
    Range: >=0.13.3.7571,<=0.13.3.7835
  • LibreDWG/Libredwgcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: >= v0.13.3.7571 && <= v0.13.3.7835

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.