16 matches found
Ubuntu: Security Advisory (USN-5864-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-5864-1: Fig2dev vulnerabilities
Frederic Cambus discovered that Fig2dev incorrectly handled certain image files. If a user or an automated system were tricked into opening a certain specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 18.04...
USN-5864-1 fig2dev vulnerabilities
Frederic Cambus discovered that Fig2dev incorrectly handled certain image files. If a user or an automated system were tricked into opening a certain specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 18.04...
SUSE: Security Advisory (SUSE-SU-2021:14823-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES11 Security Update : transfig (SUSE-SU-2021:14823-1)
The remote SUSE Linux SLES11 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:14823-1 advisory. - CVE-2021-3561: Fixed global buffer overflow in fig2dev/read.c in function readcolordef bsc1186329. - CVE-2019-19797: Fixed out-of-bounds wri...
[SECURITY] [DLA 2778-1] fig2dev security update
Debian LTS Advisory DLA-2778-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany October 04, 2021 https://wiki.debian.org/LTS Package : fig2dev Version : 1:3.2.6a-2+deb9u4 CVE ID : CVE-2019-19797 CVE-2020-21529 CVE-2020-21530 CVE-2020-21531 CVE-2020-21532...
OPENSUSE-SU-2021:1318-1 Security update for transfig
This update for transfig fixes the following issues: Update to version 3.2.8, including fixes for - CVE-2021-3561: overflow in fig2dev/read.c in function readcolordef bsc1186329. - CVE-2019-19797: out-of-bounds write in readcolordef in read.c bsc1159293. - CVE-2019-19555: stack-based buffer...
OPENSUSE-SU-2021:1143-1 Security update for transfig
This update for transfig fixes the following issues: Update to version 3.2.8, including fixes for - CVE-2021-3561: overflow in fig2dev/read.c in function readcolordef bsc1186329. - CVE-2019-19797: out-of-bounds write in readcolordef in read.c bsc1159293. - CVE-2019-19555: stack-based buffer...
openSUSE: Security Advisory for transfig (openSUSE-SU-2021:2454-1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE SLED15 / SLES15 Security Update : transfig (SUSE-SU-2021:2454-1)
The remote SUSE Linux SLED15 / SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2454-1 advisory. Update to version 3.2.8, including fixes for - CVE-2021-3561: overflow in fig2dev/read.c in function readcolordef bsc1186329. -...
openSUSE 15 Security Update : transfig (openSUSE-SU-2021:2454-1)
The remote SUSE Linux SUSE15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:2454-1 advisory. - Xfig fig2dev 3.2.7a has a stack-based buffer overflow in the calcarrow function in bound.c. CVE-2019-14275 - readtextobject in read.c in...
SUSE-SU-2021:2454-1 Security update for transfig
This update for transfig fixes the following issues: Update to version 3.2.8, including fixes for - CVE-2021-3561: overflow in fig2dev/read.c in function readcolordef bsc1186329. - CVE-2019-19797: out-of-bounds write in readcolordef in read.c bsc1159293. - CVE-2019-19555: stack-based buffer...
Medium: transfig
Issue Overview: An Out of Bounds flaw was found in fig2dev utility within transfig. An attacker could use this flaw and provide a crafted input to readobjects probably resulting in a crash or in some cases memory corruption. The highest threat from this vulnerability is to integrity as well as...
Amazon Linux 2 : transfig (ALAS-2021-1682)
The version of transfig installed on the remote host is prior to 3.2.8a-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2021-1682 advisory. An Out of Bounds flaw was found in fig2dev utility within transfig. An attacker could use this flaw and provide a crafted input t...
Fedora: Security Advisory for transfig (FEDORA-2021-dab56300b1)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2021-3561
CVE-2021-3561 refers to an Out of Bounds flaw in fig2dev (version 3.2.8a). The flaw arises from a flawed bounds check in read_objects(), which could allow a crafted input to crash the application or, in some cases, cause memory corruption, impacting integrity and availability. The connected docum...