CVE-2026-9605 | GNU libredwg up to 0.13.4.8160 Dwgbmp Utility bits.c bit_read_RC heap-based overflow (Issue 1248)

Inserito da Angelo Barbosa | Mag 26, 2026 | CVE

A vulnerability marked as critical has been reported in GNU libredwg up to 0.13.4.8160. This issue affects the function bit_read_RC of the file bits.c of the component Dwgbmp Utility. This manipulation causes heap-based buffer overflow.

This vulnerability is tracked as CVE-2026-9605. The attack is possible to be carried out remotely. Moreover, an exploit is present.

Applying a patch is the recommended action to fix this issue.

CVE-2026-9605 | GNU libredwg up to 0.13.4.8160 Dwgbmp Utility bits.c bit_read_RC heap-based overflow (Issue 1248)

Post correlati

CVE-2025-59900 | Flexense Sync Breeze Enterprise Server 10.4.18 /server_options cross site scripting

CVE-2024-28890 | WPMU Forminator Plugin up to 1.28.x on WordPress unrestricted upload

CVE-2025-12404 | Like-it Plugin up to 2.2 on WordPress Setting likeit_conf cross-site request forgery

CVE-2025-1854 | Codezips Gym Management System 1.0 del_member.php name sql injection