A vulnerability classified as critical has been found in GNU LibreDWG up to 0.14 . This affects the function decompress_R2004_section of the file src/decode.c of the component Dwgread Utility . The manipulation leads to heap-based buffer overflow. This vulnerability is listed as CVE-2026-9502 . The attack must be carried out locally. In addition, an exploit is available. To fix this issue, it is recommended to deploy a patch.