gerbv

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description An open source Gerber file (RS-274X only) viewer
Version 2.8.1-1 [community]

Open

Group Affected Fixed Severity Status Ticket
AVG-2584 2.8.1-1 Medium Vulnerable
Issue Group Severity Remote Type Description
CVE-2021-40403 AVG-2584 Medium Yes Information disclosure
An information disclosure vulnerability exists in the pick-and-place rotation parsing functionality of Gerbv 2.8.1. A specially-crafted pick-and-place file...
CVE-2021-40402 AVG-2584 Medium Yes Information disclosure
An out-of-bounds read vulnerability exists in the RS-274X aperture macro multiple outline primitives functionality of Gerbv 2.8.1. A specially-crafted...
CVE-2021-40400 AVG-2584 Medium Yes Information disclosure
An out-of-bounds read vulnerability exists in the RS-274X aperture macro outline primitive functionality of Gerbv 2.8.1. A specially- crafted gerber file...
CVE-2021-40393 AVG-2584 Medium Yes Arbitrary code execution
An out-of-bounds write vulnerability exists in the RS-274X aperture macro variables handling functionality of Gerbv 2.8.1. A specially- crafted gerber file...

Resolved

Group Affected Fixed Severity Status Ticket
AVG-2534 2.7.0-2 2.8.1-1 Medium Fixed
Issue Group Severity Remote Type Description
CVE-2021-40394 AVG-2534 Medium Yes Arbitrary code execution
An integer overflow vulnerability exists in the RS-274X aperture macro outline primitive functionality of Gerbv before version 2.8.1. A specially-crafted...
CVE-2021-40391 AVG-2534 Medium Yes Arbitrary code execution
An out-of-bounds write vulnerability exists in the drill format T-code tool number functionality of Gerbv before version 2.8.0. A specially- crafted drill...