DEBIAN-CVE-2020-21530

fig2dev 3.2.7b contains a segmentation fault in the readobjects function in read.c...

fig2dev buffer overflow vulnerability (CNVD-2021-86900)

Xfig fig2dev is a tool for printing and exporting .fig format files. A buffer overflow vulnerability exists in Fig2dev version 3.2.8a, which stems from a flawed boundary check in the program's read objects function, and can be exploited by an attacker to provide crafted, malicious input that can...

DEBIAN-CVE-2021-3561

An Out of Bounds flaw was found fig2dev version 3.2.8a. A flawed bounds check in readobjects could allow an attacker to provide a crafted malicious input causing the application to either crash or in some cases cause memory corruption. The highest threat from this vulnerability is to integrity as...

CVE-2021-3561

An Out of Bounds flaw was found fig2dev version 3.2.8a. A flawed bounds check in readobjects could allow an attacker to provide a crafted malicious input causing the application to either crash or in some cases cause memory corruption. The highest threat from this vulnerability is to integrity as...

UBUNTU-CVE-2021-3561

An Out of Bounds flaw was found fig2dev version 3.2.8a. A flawed bounds check in readobjects could allow an attacker to provide a crafted malicious input causing the application to either crash or in some cases cause memory corruption. The highest threat from this vulnerability is to integrity as...

CVE-2021-3561

An Out of Bounds flaw was found fig2dev version 3.2.8a. A flawed bounds check in readobjects could allow an attacker to provide a crafted malicious input causing the application to either crash or in some cases cause memory corruption. The highest threat from this vulnerability is to integrity as...

Xfig fig2dev 缓冲区错误漏洞

Xfig fig2dev is a tool for printing and exporting .fig format files. A buffer overflow vulnerability exists in Fig2dev version 3.2.8a, which stems from a flawed boundary check in the program's read objects function, and can be exploited by an attacker to provide crafted, malicious input that can...

Remote Code Execution (RCE)

fig2dev is vulnerable to remote code execution. The vulnerability exists due to a global buffer overflow in fig2dev/read.c in function readobjects...

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound. In PoDoFo 0.9.5, there is an integer overflow in the PdfObjectStreamParserObject::ReadObjectsFromStream function base/PdfObjectStreamParserObject.cpp. Remote attackers could leverage this vulnerability to...

UBUNTU-CVE-2018-5309

In PoDoFo 0.9.5, there is an integer overflow in the PdfObjectStreamParserObject::ReadObjectsFromStream function base/PdfObjectStreamParserObject.cpp. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted pdf file...

PT-2018-16886 · Podofo +2 · Podofo +2

Name of the Vulnerable Software and Affected Versions: PoDoFo version 0.9.5 Description: The issue is related to an integer overflow in the PdfObjectStreamParserObject::ReadObjectsFromStream function. Remote attackers could leverage this to cause a denial-of-service via a crafted pdf file...

Improper Access Control

Overview Affected versions of this package are vulnerable to Improper Access Control. Heap-based buffer overflow in the PdfParser::ReadObjects function in base/PdfParser.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service application crash or possibly have unspecified other...

DEBIAN-CVE-2008-1515

The SOAP interface in OTRS 2.1.x before 2.1.8 and 2.2.x before 2.2.6 allows remote attackers to "read and modify objects" via SOAP requests, related to "Missing security checks."...