Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xfig xfig vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2020-21535
fig2dev 3.2.7b contains a segmentation fault in the gencgm_start function in gencgm.c.
Xfig Project Fig2dev 3.2.7
Debian Debian Linux 9.0
4.3
CVSSv2
CVE-2021-32280
An issue exists in fig2dev prior to 3.2.8.. A NULL pointer dereference exists in the function compute_closed_spline() located in trans_spline.c. It allows an malicious user to cause Denial of Service. The fixed version of fig2dev is 3.2.8.
Xfig Project Fig2dev
Debian Debian Linux 9.0
Debian Debian Linux 10.0
4.3
CVSSv2
CVE-2020-21532
fig2dev 3.2.7b contains a global buffer overflow in the setfigfont function in genepic.c.
Xfig Project Fig2dev 3.2.7
Debian Debian Linux 9.0
Debian Debian Linux 10.0
4.3
CVSSv2
CVE-2020-21529
fig2dev 3.2.7b contains a stack buffer overflow in the bezier_spline function in genepic.c.
Xfig Project Fig2dev 3.2.7
Debian Debian Linux 9.0
Debian Debian Linux 10.0
4.3
CVSSv2
CVE-2020-21531
fig2dev 3.2.7b contains a global buffer overflow in the conv_pattern_index function in gencgm.c.
Xfig Project Fig2dev 3.2.7
Debian Debian Linux 9.0
Debian Debian Linux 10.0
4.3
CVSSv2
CVE-2019-19797
read_colordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write.
Xfig Project Fig2dev 3.2.7
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Debian Debian Linux 9.0
4.3
CVSSv2
CVE-2019-14275
Xfig fig2dev 3.2.7a has a stack-based buffer overflow in the calc_arrow function in bound.c.
Xfig Project Fig2dev 3.2.7
Debian Debian Linux 8.0
Opensuse Leap 15.1
Opensuse Leap 15.2
7.6
CVSSv2
CVE-2006-1550
Multiple buffer overflows in the xfig import code (xfig-import.c) in Dia 0.87 and later prior to 0.95-pre6 allow user-assisted malicious users to have an unknown impact via a crafted xfig file, possibly involving an invalid (1) color index, (2) number of points, or (3) depth.
Dia Dia 0.91
Dia Dia 0.92.2
Dia Dia 0.87
Dia Dia 0.88.1
Dia Dia 0.93
Dia Dia 0.94
4.3
CVSSv2
CVE-2019-19746
make_arrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type.
Fig2dev Project Fig2dev 3.2.7b
Fedoraproject Fedora 31
Fedoraproject Fedora 32
4.3
CVSSv2
CVE-2020-21682
A global buffer overflow in the set_fill component in genge.c of fig2dev 3.2.7b allows malicious users to cause a denial of service (DOS) via converting a xfig file into ge format.
Fig2dev Project Fig2dev 3.2.7b
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »