CVE-2026-9605 | GNU libredwg up to 0.13.4.8160 Dwgbmp Utility bits.c bit_read_RC heap-based overflow (Issue 1248)

A vulnerability marked as critical has been reported in GNU libredwg up to 0.13.4.8160. This issue affects the function bit_read_RC of the file bits.c of the component Dwgbmp Utility. This manipulation causes heap-based buffer overflow.

This vulnerability is tracked as CVE-2026-9605. The attack is possible to be carried out remotely. Moreover, an exploit is present.

Applying a patch is the recommended action to fix this issue.VulDB Recent EntriesRead More