A vulnerability, which was classified as problematic , has been found in GNU LibreDWG up to 0.14 . Affected is the function bit_convert_TU of the file programs/dwggrep.c of the component Dwggrep Utility . This manipulation causes out-of-bounds read. This vulnerability is registered as CVE-2026-9504 . The attack needs to be launched locally. Furthermore, an exploit is available. Applying a patch is the recommended action to fix this issue.