https://bugzilla.suse.com/show_bug.cgi?id=1192938 https://bugzilla.suse.com/show_bug.cgi?id=1192938#c3 --- Comment #3 from Jiri Slaby --- Factory is already fixed with the recent update. The rest (leap + backports), it's close to impossible to fix by the three CVE patches (the code is way too old/different and the changes are very intrusive). Instead, we could upgrade both libdxfrw and librecad to what is in factory. -- You are receiving this mail because: You are on the CC list for the bug.