9 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-31164
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - heap-buffer overflow in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via createlinewithspline. CVE-2025-31164 Note...
SUSE SLED15 / SLES15 Security Update : transfig (SUSE-SU-2025:01835-2)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:01835-2 advisory. Update to fig2dev version 3.2.9a - CVE-2025-31162: Fixed a floating point exception in fig2dev in getslope...
Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 : Fig2dev vulnerabilities (USN-7587-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7587-1 advisory. Suhwan Song discovered that Fig2dev did not correctly handle certain memory operations. If a user or automate...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : transfig (SUSE-SU-2025:01835-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:01835-1 advisory. Update to fig2dev version 3.2.9a - CVE-2025-31162: Fixed a floating point exception in fig2dev ...
Mageia: Security Advisory (MGASA-2025-0152)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
transfig-3.2.9a-2.1 on GA media (moderate)
transfig-3.2.9a-2.1 on GA media Announcement ID: openSUSE-SU-2025:15064-1 Rating: moderate Cross-References: CVE-2025-31162 CVE-2025-31163 CVE-2025-31164 CVSS scores: CVE-2025-31162 SUSE : 6.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H CVE-2025-31163 SUSE : 6.6...
[SECURITY] [DLA 4134-1] fig2dev security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-4134-1 [email protected] https://www.debian.org/lts/security/ Adrian Bunk April 21, 2025 https://wiki.debian.org/LTS -...
CVE-2025-31164
heap-buffer overflow in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via createlinewithspline...
CVE-2025-31164
Fig2dev in version 3.2.9a is vulnerable to a heap-buffer overflow in create_line_with_spline (CVE-2025-31164). Attackers could exploit via locally manipulated input, as described in multiple advisories (e.g., SUSE, Debian, Mageia) that also reference related CVEs 31162/31163. Affected distributio...