16 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-19746
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - makearrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type...
RHEL 6 : transfig (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - transfig: Buffer underwrite in read.c:getline via crafted FIG file CVE-2018-16140 - An array index error ...
CVE-2019-19746
creationtimestamp| type| source ---|---|--- 2024-03-10 15:46:08+00:00| seen| https://t.me/ctinow/204292...
SUSE SLES11 Security Update : transfig (SUSE-SU-2021:14823-1)
The remote SUSE Linux SLES11 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:14823-1 advisory. - CVE-2021-3561: Fixed global buffer overflow in fig2dev/read.c in function readcolordef bsc1186329. - CVE-2019-19797: Fixed out-of-bounds wri...
SUSE: Security Advisory (SUSE-SU-2021:14823-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OPENSUSE-SU-2021:1318-1 Security update for transfig
This update for transfig fixes the following issues: Update to version 3.2.8, including fixes for - CVE-2021-3561: overflow in fig2dev/read.c in function readcolordef bsc1186329. - CVE-2019-19797: out-of-bounds write in readcolordef in read.c bsc1159293. - CVE-2019-19555: stack-based buffer...
OPENSUSE-SU-2021:1143-1 Security update for transfig
This update for transfig fixes the following issues: Update to version 3.2.8, including fixes for - CVE-2021-3561: overflow in fig2dev/read.c in function readcolordef bsc1186329. - CVE-2019-19797: out-of-bounds write in readcolordef in read.c bsc1159293. - CVE-2019-19555: stack-based buffer...
openSUSE 15 Security Update : transfig (openSUSE-SU-2021:2454-1)
The remote SUSE Linux SUSE15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:2454-1 advisory. - Xfig fig2dev 3.2.7a has a stack-based buffer overflow in the calcarrow function in bound.c. CVE-2019-14275 - readtextobject in read.c in...
SUSE SLED15 / SLES15 Security Update : transfig (SUSE-SU-2021:2454-1)
The remote SUSE Linux SLED15 / SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2454-1 advisory. Update to version 3.2.8, including fixes for - CVE-2021-3561: overflow in fig2dev/read.c in function readcolordef bsc1186329. -...
openSUSE: Security Advisory for transfig (openSUSE-SU-2021:2454-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE-SU-2021:2454-1 Security update for transfig
This update for transfig fixes the following issues: Update to version 3.2.8, including fixes for - CVE-2021-3561: overflow in fig2dev/read.c in function readcolordef bsc1186329. - CVE-2019-19797: out-of-bounds write in readcolordef in read.c bsc1159293. - CVE-2019-19555: stack-based buffer...
Medium: transfig
Issue Overview: readcolordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write. CVE-2019-19797 makearrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type. CVE-2019-19746 Affected Packages: transfi...
Fedora 30 : 1:transfig / xfig (2020-6a2824178e)
Security fix for CVE-2019-19746, CVE-2019-19797 - New upstream release 3.2.7b - Add patch fixing CVE-2019-19746 rhbz1787040 - Add patch fixing CVE-2019-19797 rhbz1786726 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system...
Fedora 31 : 1:transfig / xfig (2020-5d0f0593ae)
Security fix for CVE-2019-19746, CVE-2019-19797 - New upstream release 3.2.7b - Add patch fixing CVE-2019-19746 rhbz1787040 - Add patch fixing CVE-2019-19797 rhbz1786726 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system...
CVE-2019-19746
makearrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type...
CVE-2019-19746
CVE-2019-19746 affects Xfig’s fig2dev (notably the make_arrow path in arrow.c for version 3.2.7b). The vulnerability is described as a segmentation fault and an out-of-bounds write caused by an integer overflow when processing a large arrow type. Public advisories (SUSE/openSUSE) cite vulnerable ...