Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-19797

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - readcolordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write. CVE-2019-19797 Note that Nessus relies on the presence of the package as reported by t...

5.5CVSS5.7AI score0.01221EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.30 views

RHEL 6 : transfig (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - transfig: Buffer underwrite in read.c:getline via crafted FIG file CVE-2018-16140 - An array index error ...

7.1AI score0.01381EPSS
Exploits20References22
OpenVAS
OpenVAS
added 2023/02/14 12:0 a.m.16 views

Ubuntu: Security Advisory (USN-5864-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS6.1AI score0.01241EPSS
Exploits14References2
Ubuntu
Ubuntu
added 2023/02/13 1:59 p.m.57 views

USN-5864-1: Fig2dev vulnerabilities

Frederic Cambus discovered that Fig2dev incorrectly handled certain image files. If a user or an automated system were tricked into opening a certain specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 18.04...

7.1CVSS6AI score0.01241EPSS
Exploits14
OpenVAS
OpenVAS
added 2021/10/07 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2021:14823-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS5.9AI score0.01241EPSS
Exploits9References13
Tenable Nessus
Tenable Nessus
added 2021/10/07 12:0 a.m.27 views

SUSE SLES11 Security Update : transfig (SUSE-SU-2021:14823-1)

The remote SUSE Linux SLES11 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:14823-1 advisory. - CVE-2021-3561: Fixed global buffer overflow in fig2dev/read.c in function readcolordef bsc1186329. - CVE-2019-19797: Fixed out-of-bounds wri...

7.1CVSS6.9AI score0.01241EPSS
Exploits9References29
Debian
Debian
added 2021/10/04 9:0 a.m.98 views

[SECURITY] [DLA 2778-1] fig2dev security update

Debian LTS Advisory DLA-2778-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany October 04, 2021 https://wiki.debian.org/LTS Package : fig2dev Version : 1:3.2.6a-2+deb9u4 CVE ID : CVE-2019-19797 CVE-2020-21529 CVE-2020-21530 CVE-2020-21531 CVE-2020-21532...

7.1CVSS6.3AI score0.01221EPSS
Exploits12
OSV
OSV
added 2021/09/28 11:58 a.m.11 views

OPENSUSE-SU-2021:1318-1 Security update for transfig

This update for transfig fixes the following issues: Update to version 3.2.8, including fixes for - CVE-2021-3561: overflow in fig2dev/read.c in function readcolordef bsc1186329. - CVE-2019-19797: out-of-bounds write in readcolordef in read.c bsc1159293. - CVE-2019-19555: stack-based buffer...

7.1CVSS6.4AI score0.01241EPSS
Exploits5References11
OSV
OSV
added 2021/08/10 6:5 p.m.8 views

OPENSUSE-SU-2021:1143-1 Security update for transfig

This update for transfig fixes the following issues: Update to version 3.2.8, including fixes for - CVE-2021-3561: overflow in fig2dev/read.c in function readcolordef bsc1186329. - CVE-2019-19797: out-of-bounds write in readcolordef in read.c bsc1159293. - CVE-2019-19555: stack-based buffer...

7.1CVSS6.4AI score0.01241EPSS
Exploits5References11
OpenVAS
OpenVAS
added 2021/07/23 12:0 a.m.12 views

openSUSE: Security Advisory for transfig (openSUSE-SU-2021:2454-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.1CVSS6AI score0.01241EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2021/07/23 12:0 a.m.207 views

openSUSE 15 Security Update : transfig (openSUSE-SU-2021:2454-1)

The remote SUSE Linux SUSE15 host has a package installed that is affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:2454-1 advisory. - Xfig fig2dev 3.2.7a has a stack-based buffer overflow in the calcarrow function in bound.c. CVE-2019-14275 - readtextobject in read.c in...

7.1CVSS6.6AI score0.01241EPSS
Exploits5References16
Tenable Nessus
Tenable Nessus
added 2021/07/23 12:0 a.m.146 views

SUSE SLED15 / SLES15 Security Update : transfig (SUSE-SU-2021:2454-1)

The remote SUSE Linux SLED15 / SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2454-1 advisory. Update to version 3.2.8, including fixes for - CVE-2021-3561: overflow in fig2dev/read.c in function readcolordef bsc1186329. -...

7.1CVSS7.1AI score0.01241EPSS
Exploits5References16
OSV
OSV
added 2021/07/22 11:17 a.m.6 views

SUSE-SU-2021:2454-1 Security update for transfig

This update for transfig fixes the following issues: Update to version 3.2.8, including fixes for - CVE-2021-3561: overflow in fig2dev/read.c in function readcolordef bsc1186329. - CVE-2019-19797: out-of-bounds write in readcolordef in read.c bsc1159293. - CVE-2019-19555: stack-based buffer...

7.1CVSS6.3AI score0.01241EPSS
Exploits5References11
Amazon
Amazon
added 2020/02/24 12:0 a.m.33 views

Medium: transfig

Issue Overview: readcolordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write. CVE-2019-19797 makearrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type. CVE-2019-19746 Affected Packages: transfi...

5.5CVSS6AI score0.01221EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2020/01/27 12:0 a.m.29 views

Fedora 30 : 1:transfig / xfig (2020-6a2824178e)

Security fix for CVE-2019-19746, CVE-2019-19797 - New upstream release 3.2.7b - Add patch fixing CVE-2019-19746 rhbz1787040 - Add patch fixing CVE-2019-19797 rhbz1786726 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system...

5.5CVSS5.8AI score0.01221EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2020/01/27 12:0 a.m.46 views

Fedora 31 : 1:transfig / xfig (2020-5d0f0593ae)

Security fix for CVE-2019-19746, CVE-2019-19797 - New upstream release 3.2.7b - Add patch fixing CVE-2019-19746 rhbz1787040 - Add patch fixing CVE-2019-19797 rhbz1786726 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system...

5.5CVSS5.8AI score0.01221EPSS
Exploits2References3
OSV
OSV
added 2019/12/15 8:15 p.m.5 views

CVE-2019-19797

readcolordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write...

5.5CVSS6AI score0.01221EPSS
Exploits1References4
OSV
OSV
added 2019/12/15 8:15 p.m.3 views

UBUNTU-CVE-2019-19797

readcolordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write...

5.5CVSS6.3AI score0.01221EPSS
Exploits1References3
CVE
CVE
added 2019/12/15 7:53 p.m.212 views

CVE-2019-19797

CVE-2019-19797 is evidenced in connected records as an out-of-bounds write in read_colordef of Xfig fig2dev 3.2.7b. Multiple advisories (ALAS-2023-1807, SUSE SU-2021:14823-1, Ubuntu USN-5864-1, Debian DLA-2778) map this issue to transfig/fig2dev and cite additional related CVEs. The impact is des...

5.5CVSS5.8AI score0.01221EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2019/12/15 7:53 p.m.19 views

CVE-2019-19797

readcolordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write...

6AI score0.01221EPSS
Exploits1References4
Rows per page
Query Builder