197 matches found
RHEL 8 : transfig (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - transfig: Buffer underwrite in read.c:getline via crafted FIG file CVE-2018-16140 Note that Nessus has not tested f...
RHEL 7 : transfig (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - transfig: Buffer underwrite in read.c:getline via crafted FIG file CVE-2018-16140 - An array index error ...
RHEL 5 : transfig (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - transfig: Buffer underwrite in read.c:getline via crafted FIG file CVE-2018-16140 - An array index error ...
RHEL 6 : transfig (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - transfig: Buffer underwrite in read.c:getline via crafted FIG file CVE-2018-16140 - An array index error ...
CentOS 9 : transfig-3.2.7b-9.el9
The remote CentOS Linux 9 host has a package installed that is affected by a vulnerability as referenced in the transfig-3.2.7b-9.el9 build changelog. - An issue was discovered in fig2dev before 3.2.8.. A NULL pointer dereference exists in the function computeclosedspline located in transspline.c...
Amazon Linux AMI : transfig (ALAS-2023-1807)
The version of transfig installed on the remote host is prior to 3.2.7b-10.8. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2023-1807 advisory. 2024-06-07: CVE-2019-19797 was added to this advisory. An out-of-bounds write flaw was found in transfig in the way th...
Amazon Linux 2 : transfig (ALAS-2023-2173)
The version of transfig installed on the remote host is prior to 3.2.8b-7. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2173 advisory. 2023-08-03: CVE-2021-32280 was added to this advisory. A global buffer overflow in the setfill component in genge.c of...
Medium: transfig
Issue Overview: 2023-08-03: CVE-2021-32280 was added to this advisory. A global buffer overflow in the setfill component in genge.c of fig2dev 3.2.7b allows attackers to cause a denial of service DOS via converting a xfig file into ge format. CVE-2020-21682 An issue was discovered in fig2dev befo...
SUSE CVE-2009-4227
Stack-based buffer overflow in the read13textobject function in freadold.c in Xfig 3.2.5b and earlier, and in the readtextobject function in read13.c in fig2dev in Transfig 3.2.5a and earlier, allows remote attackers to execute arbitrary code via a long string in a malformed .fig file that uses t...
Mageia: Security Advisory (MGASA-2017-0469)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2021-0379)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2021-0513)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2019-0064)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2020-0116)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE 15 Security Update : transfig (openSUSE-SU-2021:1481-1)
The remote SUSE Linux SUSE15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1481-1 advisory. - fig2dev 3.2.7b contains a stack buffer overflow in the bezierspline function in genepic.c. CVE-2020-21529 - fig2dev 3.2.7b contains a...
MGASA-2021-0513 Updated transfig packages fix security vulnerability
Correct buffer overflows and segfaults, mainly due to maliciously crafted input files...
Updated transfig packages fix security vulnerability
Correct buffer overflows and segfaults, mainly due to maliciously crafted input files...
OPENSUSE-SU-2021:1481-1 Security update for transfig
This update for transfig fixes the following issues: Update to fig2dev version 3.2.8 Patchlevel 8b Aug 2021 - bsc1190618, CVE-2020-21529: stack buffer overflow in the bezierspline function in genepic.c. - bsc1190615, CVE-2020-21530: segmentation fault in the readobjects function in read.c. -...
Security update for transfig (important)
openSUSE Security Update: Security update for transfig Announcement ID: openSUSE-SU-2021:1481-1 Rating: important References: 1189325 1189343 1189345 1189346 1190607 1190611 1190612 1190615 1190616 1190617 1190618 1192019 Cross-References: CVE-2020-21529 CVE-2020-21530 CVE-2020-21531 CVE-2020-215...
OPENSUSE-SU-2021:1458-1 Security update for transfig
This update for transfig fixes the following issues: Update to fig2dev version 3.2.8 Patchlevel 8b Aug 2021 - bsc1190618, CVE-2020-21529: stack buffer overflow in the bezierspline function in genepic.c. - bsc1190615, CVE-2020-21530: segmentation fault in the readobjects function in read.c. -...