Search CVE reports
1 – 10 of 15 results
CVE-2021-32280
Medium prioritySome fixes available 2 of 4
An issue was discovered in fig2dev before 3.2.8.. A NULL pointer dereference exists in the function compute_closed_spline() located in trans_spline.c. It allows an attacker to cause Denial of Service. The fixed version of fig2dev is 3.2.8.
3 affected packages
fig2dev, transfig, xfig
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
fig2dev | Not affected | Not affected | Fixed | Fixed | Ignored |
transfig | Not in release | Not in release | Not in release | Not in release | Vulnerable |
xfig | Not affected | Not affected | Not affected | Not affected | Vulnerable |
CVE-2020-21535
Medium prioritySome fixes available 2 of 3
fig2dev 3.2.7b contains a segmentation fault in the gencgm_start function in gencgm.c.
2 affected packages
fig2dev, transfig
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
fig2dev | Not affected | Not affected | Fixed | Fixed | Ignored |
transfig | Not in release | Not in release | Not in release | Not in release | Vulnerable |
CVE-2020-21534
Medium prioritySome fixes available 2 of 3
fig2dev 3.2.7b contains a global buffer overflow in the get_line function in read.c.
2 affected packages
fig2dev, transfig
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
fig2dev | Not affected | Not affected | Fixed | Fixed | Ignored |
transfig | Not in release | Not in release | Not in release | Not in release | Vulnerable |
CVE-2020-21533
Medium prioritySome fixes available 2 of 3
fig2dev 3.2.7b contains a stack buffer overflow in the read_textobject function in read.c.
2 affected packages
fig2dev, transfig
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
fig2dev | Not affected | Not affected | Fixed | Fixed | Ignored |
transfig | Not in release | Not in release | Not in release | Not in release | Needs evaluation |
CVE-2020-21532
Medium prioritySome fixes available 2 of 3
fig2dev 3.2.7b contains a global buffer overflow in the setfigfont function in genepic.c.
2 affected packages
fig2dev, transfig
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
fig2dev | Not affected | Not affected | Fixed | Fixed | Ignored |
transfig | Not in release | Not in release | Not in release | Not in release | Vulnerable |
CVE-2020-21531
Medium prioritySome fixes available 2 of 3
fig2dev 3.2.7b contains a global buffer overflow in the conv_pattern_index function in gencgm.c.
2 affected packages
fig2dev, transfig
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
fig2dev | Not affected | Not affected | Fixed | Fixed | Ignored |
transfig | Not in release | Not in release | Not in release | Not in release | Vulnerable |
CVE-2020-21530
Medium prioritySome fixes available 2 of 3
fig2dev 3.2.7b contains a segmentation fault in the read_objects function in read.c.
2 affected packages
fig2dev, transfig
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
fig2dev | Not affected | Not affected | Fixed | Fixed | Ignored |
transfig | Not in release | Not in release | Not in release | Not in release | Vulnerable |
CVE-2020-21529
Medium prioritySome fixes available 2 of 3
fig2dev 3.2.7b contains a stack buffer overflow in the bezier_spline function in genepic.c.
2 affected packages
fig2dev, transfig
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
fig2dev | Not affected | Not affected | Fixed | Fixed | Ignored |
transfig | Not in release | Not in release | Not in release | Not in release | Vulnerable |
CVE-2021-3561
Low prioritySome fixes available 2 of 4
An Out of Bounds flaw was found fig2dev version 3.2.8a. A flawed bounds check in read_objects() could allow an attacker to provide a crafted malicious input causing the application to either crash or in some cases cause memory...
2 affected packages
fig2dev, transfig
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
fig2dev | Not affected | Not affected | Fixed | Fixed | Ignored |
transfig | Not in release | Not in release | Not in release | Not in release | Not affected |
CVE-2019-19797
Low prioritySome fixes available 2 of 4
read_colordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write.
2 affected packages
fig2dev, transfig
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
fig2dev | — | Not affected | Fixed | Fixed | Not in release |
transfig | — | Not in release | Not in release | Not in release | Not affected |