EUVD-2020-14298

Malware in sbrugna...

SUSE-SU-2025:01835-2 Security update for transfig

This update for transfig fixes the following issues: Update to fig2dev version 3.2.9a - CVE-2025-31162: Fixed a floating point exception in fig2dev in getslope function bsc1240380. - CVE-2025-31163: Fixed a segmentation fault in fig2dev in putpatternarc function bsc1240381. - CVE-2025-31164: Fixe...

Security update for transfig

This update for transfig fixes the following issues: Update to fig2dev version 3.2.9a CVE-2025-46397: Fixed a stack buffer overflow in fig2dev in bezierspline function bsc1243260. CVE-2025-46398: Fixed a stack buffer overflow in fig2dev in readobjects function bsc1243262. CVE-2025-46399: Fixed a...

CVE-2025-46400

In xfig diagramming tool, a segmentation fault while running fig2dev allows an attacker to availability via local input manipulation via readarcobject function...

CVE-2025-46399

A flaw was found in fig2dev. This vulnerability allows availability via local input manipulation via gengeitpspline function...

CVE-2025-46399 Xfig: transfig: fig2dev segmentation fault vulnerability

A flaw was found in fig2dev. This vulnerability allows availability via local input manipulation via gengeitpspline function...

CVE-2025-31163 fig2dev segmentation fault

Segmentation fault in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via putpatternarc function...

CVE-2025-31164

Fig2dev in version 3.2.9a is vulnerable to a heap-buffer overflow in create_line_with_spline (CVE-2025-31164). Attackers could exploit via locally manipulated input, as described in multiple advisories (e.g., SUSE, Debian, Mageia) that also reference related CVEs 31162/31163. Affected distributio...

PT-2025-13562 · Fig2Dev +4 · Fig2Dev +4

Name of the Vulnerable Software and Affected Versions: fig2dev version 3.2.9a Description: The issue is related to a floating point exception in the fig2dev component, specifically in the get slope function. This exception can be triggered by an attacker through local input manipulation,...

SUSE CVE-2020-21529

fig2dev 3.2.7b contains a stack buffer overflow in the bezierspline function in genepic.c...

fig2dev buffer overflow vulnerability (CNVD-2021-79767)

fig2dev is used to convert .fig files to various graphics languages and formats. A global buffer overflow vulnerability exists in shadeortintnameafterdeclarecolor in genpstricks.c in fig2dev version 3.2.7b. An attacker could exploit this vulnerability to cause a denial of service by converting th...

PT-2021-6723 · Fig2Dev +3 · Fig2Dev +3

Name of the Vulnerable Software and Affected Versions: fig2dev version 3.2.7b Description: A global buffer overflow in the set fill component in genge.c of fig2dev allows attackers to cause a denial of service DOS via converting a xfig file into ge format. This issue is related to the lack of inp...

CVE-2021-3561

An Out of Bounds flaw was found fig2dev version 3.2.8a. A flawed bounds check in readobjects could allow an attacker to provide a crafted malicious input causing the application to either crash or in some cases cause memory corruption. The highest threat from this vulnerability is to integrity as...

CVE-2021-3561

An Out of Bounds flaw was found fig2dev version 3.2.8a. A flawed bounds check in readobjects could allow an attacker to provide a crafted malicious input causing the application to either crash or in some cases cause memory corruption. The highest threat from this vulnerability is to integrity as...

Design/Logic Flaw

An Out of Bounds flaw was found fig2dev version 3.2.8a. A flawed bounds check in readobjects could allow an attacker to provide a crafted malicious input causing the application to either crash or in some cases cause memory corruption. The highest threat from this vulnerability is to integrity as...

UBUNTU-CVE-2021-3561

An Out of Bounds flaw was found fig2dev version 3.2.8a. A flawed bounds check in readobjects could allow an attacker to provide a crafted malicious input causing the application to either crash or in some cases cause memory corruption. The highest threat from this vulnerability is to integrity as...

UBUNTU-CVE-2018-16140

A buffer underwrite vulnerability in getline read.c in fig2dev 3.2.7a allows an attacker to write prior to the beginning of the buffer via a crafted .fig file...