10 matches found
SUSE SLED15 / SLES15 Security Update : transfig (SUSE-SU-2025:01835-2)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:01835-2 advisory. Update to fig2dev version 3.2.9a - CVE-2025-31162: Fixed a floating point exception in fig2dev in getslope...
TencentOS Server 4: transfig (TSSA-2025:0488)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0488 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
SUSE SLES12 Security Update : transfig (SUSE-SU-2025:01890-1)
The remote SUSE Linux SLES12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:01890-1 advisory. Update to fig2dev version 3.2.9a - CVE-2025-46397: Fixed a stack buffer overflow in fig2dev in bezierspline function bsc1243260. -...
CVE-2025-46398
In xfig diagramming tool, a stack-overflow while running fig2dev allows memory corruption via local input manipulation via readobjects function...
CVE-2025-46398
In xfig diagramming tool, a stack-overflow while running fig2dev allows memory corruption via local input manipulation via readobjects function...
CVE-2025-46398
In xfig diagramming tool, a stack-overflow while running fig2dev allows memory corruption via local input manipulation via readobjects function...
CVE-2025-46398
creationtimestamp| type| source ---|---|--- 2025-04-23 21:05:01+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13153 2025-04-24 00:02:03+00:00| published-proof-of-concept| Telegram/nLLiU9XeUeMIp5jrXJDhah4Wv5btJb4tJwgKYZU-gIMEuU0 2025-04-24 00:31:14+00:00| seen| https://t.me/cvedetector/23621...
CVE-2025-46398
CVE-2025-46398 affects fig2dev (part of xfig/Transfig). The vulnerability is a stack overflow in read_objects() that allows memory corruption via local input manipulation, exploitable by a locally authenticated user under conditions described in several advisories. Public disclosures in Debian LT...
CVE-2025-46398
In xfig diagramming tool, a stack-overflow while running fig2dev allows memory corruption via local input manipulation via readobjects function...
CVE-2025-46398 Xfig: fig2dev stack-overflow via read_objects
In xfig diagramming tool, a stack-overflow while running fig2dev allows memory corruption via local input manipulation via readobjects function...