Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-4228HistoryDec 08, 2009 - 6:30 p.m.
CVE-2009-4228
2009-12-0818:30:00
Debian Security Bug Tracker
security-tracker.debian.org
5
0.005 Low
EPSS
Percentile
75.3%
Stack consumption vulnerability in u_bound.c in Xfig 3.2.5b and earlier allows remote attackers to cause a denial of service (application crash) via a long string in a malformed .fig file that uses the 1.3 file format, possibly related to the readfp_fig function in f_read.c.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | xfig | <= 1:3.2.8b-2 | xfig_1:3.2.8b-2_all.deb |
| Debian | 11 | all | xfig | <= 1:3.2.8-3+deb11u1 | xfig_1:3.2.8-3+deb11u1_all.deb |
| Debian | 10 | all | xfig | <= 1:3.2.7a-3 | xfig_1:3.2.7a-3_all.deb |
| Debian | 999 | all | xfig | <= 1:3.2.9-3 | xfig_1:3.2.9-3_all.deb |
| Debian | 13 | all | xfig | <= 1:3.2.9-3 | xfig_1:3.2.9-3_all.deb |
Related
prion
prion
Format string
2009-12-08 18:30:00
ubuntucve
ubuntucve
CVE-2009-4228
2009-12-08 00:00:00
cvelist
cvelist
CVE-2009-4228
2009-12-08 18:00:00
cve
cve
CVE-2009-4228
2009-12-08 18:30:00
fedora
fedora
[SECURITY] Fedora 17 Update: transfig-3.2.5d-7.fc17
2012-08-27 03:26:00
[SECURITY] Fedora 17 Update: xfig-3.2.5-32.b.fc17
2012-08-22 21:02:10
[SECURITY] Fedora 16 Update: transfig-3.2.5d-4.fc16
2012-08-27 03:29:11
openvas
openvas
Gentoo Security Advisory GLSA 201412-14
2015-09-29 00:00:00
Fedora Update for xfig FEDORA-2012-11813
2012-08-24 00:00:00
Fedora Update for transfig FEDORA-2012-11718
2012-08-30 00:00:00
nessus
nessus
Fedora 17 : transfig-3.2.5d-7.fc17 (2012-11718)
2012-08-27 00:00:00
GLSA-201412-14 : Xfig: User-assisted execution of arbitrary code
2014-12-15 00:00:00
Fedora 16 : transfig-3.2.5d-4.fc16 (2012-11737)
2012-08-27 00:00:00
gentoo
gentoo
Xfig: User-assisted execution of arbitrary code
2014-12-13 00:00:00
securityvulns
securityvulns
[ MDVSA-2011:010 ] xfig
2011-01-19 00:00:00
Xfig multiple security vulnerabilities
2011-01-19 00:00:00