UBUNTU-CVE-2019-19797

readcolordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write...

Out-of-bounds

readcolordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write...

CVE-2019-19797

readcolordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write...

CVE-2019-19797

CVE-2019-19797 is evidenced in connected records as an out-of-bounds write in read_colordef of Xfig fig2dev 3.2.7b. Multiple advisories (ALAS-2023-1807, SUSE SU-2021:14823-1, Ubuntu USN-5864-1, Debian DLA-2778) map this issue to transfig/fig2dev and cite additional related CVEs. The impact is des...

CVE-2019-19797

readcolordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write...

CVE-2019-19797

readcolordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write...

CVE-2019-19746

makearrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type...

DEBIAN-CVE-2019-19746

makearrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type...

CVE-2019-19746

makearrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type...

Integer overflow

makearrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type...

CVE-2019-19746

CVE-2019-19746 affects Xfig’s fig2dev (notably the make_arrow path in arrow.c for version 3.2.7b). The vulnerability is described as a segmentation fault and an out-of-bounds write caused by an integer overflow when processing a large arrow type. Public advisories (SUSE/openSUSE) cite vulnerable ...

CVE-2019-19746

makearrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type...

CVE-2019-19746

makearrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type...

fig2dev buffer overflow vulnerability (CNVD-2021-79776)

fig2dev is a tool for printing and exporting .fig format files. A buffer error vulnerability exists in the 'readtextobject' function of the read.c file in fig2dev version 3.2.7b. The vulnerability stems from a networked system or product that does not properly validate data boundaries when...

CVE-2019-19555

readtextobject in read.c in Xfig fig2dev 3.2.7b has a stack-based buffer overflow because of an incorrect sscanf...

CVE-2019-19555

readtextobject in read.c in Xfig fig2dev 3.2.7b has a stack-based buffer overflow because of an incorrect sscanf...

CVE-2019-19555

readtextobject in read.c in Xfig fig2dev 3.2.7b has a stack-based buffer overflow because of an incorrect sscanf...

Stack overflow

readtextobject in read.c in Xfig fig2dev 3.2.7b has a stack-based buffer overflow because of an incorrect sscanf...

CVE-2019-19555

readtextobject in read.c in Xfig fig2dev 3.2.7b has a stack-based buffer overflow because of an incorrect sscanf...

CVE-2019-19555

readtextobject in read.c in Xfig fig2dev 3.2.7b has a stack-based buffer overflow because of an incorrect sscanf...