Releases: LibreDWG/libredwg
0.13.3.7165
libredwg windows nightly
0.13.3.7163
ea7a9b201065845fad90ddaeb05e08799cc719aabb0d60da9a4a8a1fb557803d libredwg-0.13.3.7163.tar.gz
2259496a3ffa30c4ab0e627328fc673447459572fb8eb7ac2176b451b0b739ac libredwg-0.13.3.7163.tar.xz
Release 0.13.2
A minor bugfix release, fixes error: cannot find input file: `test/xmlsuite/Makefile.in'
See https://www.gnu.org/software/libredwg/ and NEWS
Here are the compressed sources:
http://ftp.gnu.org/gnu/libredwg/libredwg-0.13.2.tar.gz (21MB)
http://ftp.gnu.org/gnu/libredwg/libredwg-0.13.2.tar.xz (11MB)
Here are the GPG detached signatures[*]:
http://ftp.gnu.org/gnu/libredwg/libredwg-0.13.2.tar.gz.sig
http://ftp.gnu.org/gnu/libredwg/libredwg-0.13.2.tar.xz.sig
Use a mirror for higher download bandwidth:
https://www.gnu.org/order/ftp.html
Here are more binaries:
https://github.com/LibreDWG/libredwg/releases/tag/0.13.2
Here are the SHA256 checksums:
7c517bc58267fb97ae063568969b16b248b74cb0bfe4a8232eec4f751d9468ff libredwg-0.13.2.tar.gz
9ab76010a6536ebf86df50f4973cb6cb2fc8aa2677084b8d22ac8320052d9329 libredwg-0.13.2.tar.xz
2936cd6651f32c827d9b91c42f2725cdd8f2d3a60c1054fef53e291836d3afe7 libredwg-0.13.2-win32.zip
5ef14c0a0ffe2f8725b29f00de16a952915bf560cccb44f5a3a6e1dc80c4ea0b libredwg-0.13.2-win64.zip
Please ignore the broken Source code (tar.gz, .zip) artefacts. They cannot be deleted.
[*] Use a .sig file to verify that the corresponding file (without the
.sig suffix) is intact. First, be sure to download both the .sig file
and the corresponding tarball. Then, run a command like this:
gpg --verify libredwg-0.13.1.tar.gz.sig
If that command fails because you don't have the required public key,
then run this command to import it:
gpg --recv-keys B4F63339E65D6414
and rerun the gpg --verify command.
Release 0.13.1
A minor bugfix release, but broken.
error: cannot find input file: `test/xmlsuite/Makefile.in'
You can safely patch the test/xmlsuite error away.
See https://www.gnu.org/software/libredwg/ and NEWS
Here are the compressed sources:
http://ftp.gnu.org/gnu/libredwg/libredwg-0.13.1.tar.gz (17.4MB)
http://ftp.gnu.org/gnu/libredwg/libredwg-0.13.1.tar.xz (9MB)
Here are the GPG detached signatures[*]:
http://ftp.gnu.org/gnu/libredwg/libredwg-0.13.1.tar.gz.sig
http://ftp.gnu.org/gnu/libredwg/libredwg-0.13.1.tar.xz.sig
Use a mirror for higher download bandwidth:
https://www.gnu.org/order/ftp.html
Here are more binaries:
https://github.com/LibreDWG/libredwg/releases/tag/0.13.1
Here are the SHA256 checksums:
4f0a8920a0d500c5df02ea4cddad0665397642ed39852bc401580a253ac5b911 libredwg-0.13.1.tar.gz
33bca643ec730143d252f6ddd2bb1d69062416f3a94b05b9e90eb8ccdbe149a4 libredwg-0.13.1.tar.xz
34fa0603fc8a0c4d9550096420a807457a3be34f99042568f2264f426e922f9c libredwg-0.13.1-win32.zip
89d67be07fd08a88adfe1870587ffa3fe8a121eebb915c92d01b7ab95bc4e572 libredwg-0.13.1-win64.zip
[*] Use a .sig file to verify that the corresponding file (without the
.sig suffix) is intact. First, be sure to download both the .sig file
and the corresponding tarball. Then, run a command like this:
gpg --verify libredwg-0.13.1.tar.gz.sig
If that command fails because you don't have the required public key,
then run this command to import it:
gpg --recv-keys B4F63339E65D6414
and rerun the gpg --verify command.
Release 0.13
Can now also read and write all DWG formats pre-R13. but broken.
error: cannot find input file: `test/xmlsuite/Makefile.in'
You can safely patch the test/xmlsuite error away.
See https://www.gnu.org/software/libredwg/ and NEWS
Here are the compressed sources:
http://ftp.gnu.org/gnu/libredwg/libredwg-0.13.tar.gz (17.4MB)
http://ftp.gnu.org/gnu/libredwg/libredwg-0.13.tar.xz (9MB)
Here are the GPG detached signatures[*]:
http://ftp.gnu.org/gnu/libredwg/libredwg-0.13.tar.gz.sig
http://ftp.gnu.org/gnu/libredwg/libredwg-0.13.tar.xz.sig
Use a mirror for higher download bandwidth:
https://www.gnu.org/order/ftp.html
Here are more binaries:
https://github.com/LibreDWG/libredwg/releases/tag/0.13
Here are the SHA256 checksums:
9682b0c5e6d91720666118059c67bf614e407a49b1a3c13312fe6a6c8f41d9cf libredwg-0.13.tar.gz
dd906f59d71b26c13fd2420f50fc50bea666fd54acc764d8c344f7f89d5ab94e libredwg-0.13.tar.xz
cc5df6456cdc7d0c9ebcd2eb798b81a80aab6b3a8f5417d4598262f3d2120886 libredwg-0.13-win32.zip
34774d2cd1c87f00a1d647f6c172ff92d02bab4ebe586badd883772fb746218b libredwg-0.13-win64.zip
[*] Use a .sig file to verify that the corresponding file (without the
.sig suffix) is intact. First, be sure to download both the .sig file
and the corresponding tarball. Then, run a command like this:
gpg --verify libredwg-0.13.tar.gz.sig
If that command fails because you don't have the required public key,
then run this command to import it:
gpg --keyserver keys.gnupg.net --recv-keys B4F63339E65D6414
and rerun the gpg --verify command.
Release 0.12.5
Fixed many more minor fuzzing errors.
See https://www.gnu.org/software/libredwg/ and NEWS
Here are the compressed sources:
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.5.tar.gz (17.4MB)
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.5.tar.xz (9MB)
Here are the GPG detached signatures[*]:
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.5.tar.gz.sig
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.5.tar.xz.sig
Use a mirror for higher download bandwidth:
https://www.gnu.org/order/ftp.html
Here are more binaries:
https://github.com/LibreDWG/libredwg/releases/tag/0.12.5
Here are the SHA256 checksums:
4b5b38943e4a060bfee34a8542701b26102262610b1dd4dc58d76fadfb995106 libredwg-0.12.5.tar.gz
d3de19cde6adc27cb65cc353ae01a1e8aa15d1ab6ca4ce2563b76e73e8b2f1bd libredwg-0.12.5.tar.xz
65f00b1d02012a40b09adae1e10956d17374de46d189b18236f824841e958111 libredwg-0.12.5-win32.zip
dfb609aa05883056effaaf51f0a95617803e06b1c4e4572cd3cee948087cbb35 libredwg-0.12.5-win64.zip
[*] Use a .sig file to verify that the corresponding file (without the
.sig suffix) is intact. First, be sure to download both the .sig file
and the corresponding tarball. Then, run a command like this:
gpg --verify libredwg-0.12.5.tar.gz.sig
If that command fails because you don't have the required public key,
then run this command to import it:
gpg --keyserver keys.gnupg.net --recv-keys B4F63339E65D6414
and rerun the gpg --verify command.
Release 0.12.4
Fixed many more minor fuzzing errors.
See https://www.gnu.org/software/libredwg/ and NEWS
Here are the compressed sources:
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.4.tar.gz (17.4MB)
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.4.tar.xz (9MB)
Here are the GPG detached signatures[*]:
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.4.tar.gz.sig
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.4.tar.xz.sig
Use a mirror for higher download bandwidth:
https://www.gnu.org/order/ftp.html
Here are more binaries:
https://github.com/LibreDWG/libredwg/releases/tag/0.12.4
Here are the SHA256 checksums:
081e9a70be529542b905b04be73e3e7590d60b1e976c0227f47004f3373ed9b1 libredwg-0.12.4.tar.gz
918857f119c34d9bef17321b646c4ba0fbfaa93dcaced403bae1933e1d9a6517 libredwg-0.12.4.tar.xz
212f07aff72839a2609f669a974c209f998b61f6de77da1cdb491f8ab05297f5 libredwg-0.12.4-win32.zip
f5aee4d3c33442ef4f9551a2943dffc1939d563e0296a2cfebee2e5799a0215c libredwg-0.12.4-win64.zip
[*] Use a .sig file to verify that the corresponding file (without the
.sig suffix) is intact. First, be sure to download both the .sig file
and the corresponding tarball. Then, run a command like this:
gpg --verify libredwg-0.12.4.tar.gz.sig
If that command fails because you don't have the required public key,
then run this command to import it:
gpg --keyserver keys.gnupg.net --recv-keys B4F63339E65D6414
and rerun the gpg --verify command.
Release 0.12.3
Add llvmfuzz and oss-fuzz integration, fixed many minor fuzzing errors. libfuzzer is much better than afl++ and honggfuzz.
See https://www.gnu.org/software/libredwg/ and NEWS
Here are the compressed sources:
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.3.tar.gz (17.4MB)
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.3.tar.xz (9MB)
Here are the GPG detached signatures[*]:
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.3.tar.gz.sig
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.3.tar.xz.sig
Use a mirror for higher download bandwidth:
https://www.gnu.org/order/ftp.html
Here are more binaries:
https://github.com/LibreDWG/libredwg/releases/tag/0.12.3
Here are the SHA256 checksums:
47933ccc0230c66c571606f7a5897fa1fb0f664fba871b883f1a785783f58a33 libredwg-0.12.3.tar.gz
b31a33466ba23312119138d0ac022399841ee0f40d9bbd970410a2fc471e15ee libredwg-0.12.3.tar.xz
8eb64bb281afd718ab15d5868f58a74a8a37a71051a20a843e2ec1d936c69d4e libredwg-0.12.3-win64.zip
d947868fae79bcff91832c188efa89e508840ac64e1708acba0f69e500c97bd6 libredwg-0.12.3-win32.zip
[*] Use a .sig file to verify that the corresponding file (without the
.sig suffix) is intact. First, be sure to download both the .sig file
and the corresponding tarball. Then, run a command like this:
gpg --verify libredwg-0.12.3.tar.gz.sig
If that command fails because you don't have the required public key,
then run this command to import it:
gpg --keyserver keys.gnupg.net --recv-keys B4F63339E65D6414
and rerun the gpg --verify command.
Release 0.12.2
Minor bugfix:
- Fixed extending the write buffer for the 2 CRC bytes. Occurs very seldomly (GH #315)
See https://www.gnu.org/software/libredwg/ and NEWS
Here are the compressed sources:
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.2.tar.gz (17.4MB)
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.2.tar.xz (9MB)
Here are the GPG detached signatures[*]:
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.2.tar.gz.sig
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.2.tar.xz.sig
Use a mirror for higher download bandwidth:
https://www.gnu.org/order/ftp.html
Here are more binaries:
https://github.com/LibreDWG/libredwg/releases/tag/0.12.2
Here are the SHA256 checksums:
8b4c0ddbd52598c5849e2c4b267411e557f282f336ef497afc919d516c0c394e libredwg-0.12.2.tar.gz
9227f4cb8a4aa1b785038e2c583affe0d84194c97dca4794e143258b0302fb85 libredwg-0.12.2.tar.xz
6fe27f0e1f73b8ba1c9eb20a9597fe2781207c68cb3f8883e52c60f7b3ea2c27 libredwg-0.12.2-win32.zip
92d6fddb5dbe108edf8381e8c87889edd082d1c75b48b30bda8ca1b5fab00628 libredwg-0.12.2-win64.zip
[*] Use a .sig file to verify that the corresponding file (without the
.sig suffix) is intact. First, be sure to download both the .sig file
and the corresponding tarball. Then, run a command like this:
gpg --verify libredwg-0.12.2.tar.gz.sig
If that command fails because you don't have the required public key,
then run this command to import it:
gpg --keyserver keys.gnupg.net --recv-keys B4F63339E65D6414
and rerun the gpg --verify command.
Release 0.12.1
Major bugfixes:
- fixed dwg_bmp() and dwgbmp for >= r2004. Wrong dat offset.
- Fixed EED with code 3 for layer handles. (Fixes GH #310, shanzhugit)
- Fixed bit_convert_TU utf8 conversion with ubsan, wrong endian-ness.
Various fuzzing errors detected and fuzzed by Chew Kin Zhong (See GH #304): - Fix possible null-deref with broken DWG's in dwg_get_first_object.
- Fix possible null-deref with broken DWG's in dwg_find_class with empty
CLASS.dxfname. (GH #309) - Fix possible null-deref with broken DWG's in dwglayers with empty
LAYER.name. (GH #308) - Fix short integer overflow in EED checks when decoding malcrafted DWG's,
which also led to encode buffer overflows. (GH #307) - Fix possible null-derefs with broken DWG's in json export. (GH #306)
- Fix possible null-deref with broken DWG's in dwg_next_entity iterator. (GH #305)
- Fix wrong TFF overflow check for static strings, where we cannot set
the string nor the size. (GH #304) - Fix heap-overflows and invalid free's when decoding broken 3DSOLID's
in malcrafted DWG's. Only accept version 1 and 2. (GH #304)
Minor features:
- Added string converters with known TU sizes: bit_TU_to_utf8_len, bit_read_TU_len.
See https://www.gnu.org/software/libredwg/ and NEWS
Here are the compressed sources:
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.1.tar.gz (17.4MB)
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.1.tar.xz (9MB)
Here are the GPG detached signatures[*]:
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.1.tar.gz.sig
http://ftp.gnu.org/gnu/libredwg/libredwg-0.12.1.tar.xz.sig
Use a mirror for higher download bandwidth:
https://www.gnu.org/order/ftp.html
Here are more binaries:
https://github.com/LibreDWG/libredwg/releases/tag/0.12.1
Here are the SHA256 checksums:
5a71bcb391f9da29e268e86edda3911ae0763fcdba3b21a3c139510474098542 libredwg-0.12.1.tar.gz
dedf502b7085bed716d4ffb669d1b699a988eabd928a48d13e30176b43823128 libredwg-0.12.1.tar.xz
cfa8e91e12761b14d3d6826cf3b5b336d12db74d805a99defe45bb25f029ae17 libredwg-0.12.1-win32.zip
1fd2a4c6c682a7ed9263d0c30780545b8c82f038fc483a206d7eeaf4d41c5cc1 libredwg-0.12.1-win64.zip
[*] Use a .sig file to verify that the corresponding file (without the
.sig suffix) is intact. First, be sure to download both the .sig file
and the corresponding tarball. Then, run a command like this:
gpg --verify libredwg-0.12.1.tar.gz.sig
If that command fails because you don't have the required public key,
then run this command to import it:
gpg --keyserver keys.gnupg.net --recv-keys B4F63339E65D6414
and rerun the gpg --verify command.