Login Sign Up

CVE-2020-21830

8.8 HIGH
Denial of Service Buffer Overflow

📋 TL;DR

A heap-based buffer overflow vulnerability in GNU LibreDWG 0.10 allows attackers to execute arbitrary code or cause denial of service by processing specially crafted DWG files. This affects any application or service that uses LibreDWG to handle DWG CAD files. Users and systems processing untrusted DWG files are at risk.

💻 Affected Systems

Products:
  • GNU LibreDWG
Versions: Version 0.10 specifically (and possibly earlier versions with similar code)
Operating Systems: All platforms running LibreDWG (Linux, Windows, macOS)
Default Config Vulnerable: ⚠️ Yes
Notes: Any application linking against LibreDWG libraries is vulnerable when processing DWG files.

📦 What is this software?

Libredwg by Gnu

View all CVEs affecting Libredwg →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution with the privileges of the LibreDWG process, potentially leading to full system compromise.

🟠

Likely Case

Application crash (denial of service) when processing malicious DWG files, with potential for code execution in some scenarios.

🟢

If Mitigated

Limited to denial of service if exploit fails or memory protections are in place.

🌐 Internet-Facing: MEDIUM - Risk exists if LibreDWG processes user-uploaded DWG files via web applications or services.
🏢 Internal Only: LOW - Primarily affects users opening untrusted DWG files locally or via internal file shares.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: MEDIUM

Exploitation requires crafting a malicious DWG file; public proof-of-concept exists in GitHub issue #188.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Version 0.10.1 or later

Vendor Advisory: https://github.com/LibreDWG/libredwg/issues/188

Restart Required: No

Instructions:

1. Update LibreDWG to version 0.10.1 or later. 2. Recompile any applications using LibreDWG libraries. 3. Replace vulnerable binaries with patched versions.

🔧 Temporary Workarounds

Disable DWG file processing

all

Temporarily block or reject DWG files from untrusted sources.

Use alternative DWG viewer

all

Switch to a different, non-vulnerable DWG processing library or application.

🧯 If You Can't Patch

  • Restrict access to LibreDWG applications to trusted users only.
  • Implement strict file upload validation to reject suspicious DWG files.

🔍 How to Verify

Check if Vulnerable:

Check LibreDWG version: `dwgread --version` or examine linked library versions in applications.

Check Version:

dwgread --version

Verify Fix Applied:

Confirm version is 0.10.1 or later and test with known malicious DWG samples if available.

📡 Detection & Monitoring

Log Indicators:

  • Application crashes or abnormal terminations when processing DWG files
  • Memory access violation errors in system logs

Network Indicators:

  • Unusual file uploads of DWG files to web services

SIEM Query:

source="application.log" AND ("segmentation fault" OR "buffer overflow") AND "libredwg"

📊 Metadata

CVE ID: CVE-2020-21830
CVSS v3 Score: 8.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-787
Published: May 17, 2021
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-21830, you might also want to check these:

CVE-2022-43604 10.0

CVE-2022-43604 is a critical out-of-bounds write vulnerability in the OpENer EtherNet/IP stack that ...

Same vulnerability type (CWE-787)
CVE-2025-24201 10.0

This critical vulnerability allows malicious web content to break out of the Web Content sandbox via...

Same vulnerability type (CWE-787)
CVE-2020-14871 10.0

This is a critical buffer overflow vulnerability (CWE-787) in Oracle Solaris's Pluggable Authenticat...

Same vulnerability type (CWE-787)