Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xfig xfig vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2020-21534
fig2dev 3.2.7b contains a global buffer overflow in the get_line function in read.c.
Xfig Project Fig2dev 3.2.7
Debian Debian Linux 9.0
5.5
CVSSv3
CVE-2021-32280
An issue exists in fig2dev prior to 3.2.8.. A NULL pointer dereference exists in the function compute_closed_spline() located in trans_spline.c. It allows an malicious user to cause Denial of Service. The fixed version of fig2dev is 3.2.8.
Xfig Project Fig2dev
Debian Debian Linux 9.0
Debian Debian Linux 10.0
5.5
CVSSv3
CVE-2020-21532
fig2dev 3.2.7b contains a global buffer overflow in the setfigfont function in genepic.c.
Xfig Project Fig2dev 3.2.7
Debian Debian Linux 9.0
Debian Debian Linux 10.0
5.5
CVSSv3
CVE-2020-21529
fig2dev 3.2.7b contains a stack buffer overflow in the bezier_spline function in genepic.c.
Xfig Project Fig2dev 3.2.7
Debian Debian Linux 9.0
Debian Debian Linux 10.0
5.5
CVSSv3
CVE-2020-21531
fig2dev 3.2.7b contains a global buffer overflow in the conv_pattern_index function in gencgm.c.
Xfig Project Fig2dev 3.2.7
Debian Debian Linux 9.0
Debian Debian Linux 10.0
5.5
CVSSv3
CVE-2019-19797
read_colordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write.
Xfig Project Fig2dev 3.2.7
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Debian Debian Linux 9.0
5.5
CVSSv3
CVE-2019-14275
Xfig fig2dev 3.2.7a has a stack-based buffer overflow in the calc_arrow function in bound.c.
Xfig Project Fig2dev 3.2.7
Debian Debian Linux 8.0
Opensuse Leap 15.1
Opensuse Leap 15.2
NA
CVE-2006-1550
Multiple buffer overflows in the xfig import code (xfig-import.c) in Dia 0.87 and later prior to 0.95-pre6 allow user-assisted malicious users to have an unknown impact via a crafted xfig file, possibly involving an invalid (1) color index, (2) number of points, or (3) depth.
Dia Dia 0.91
Dia Dia 0.93
Dia Dia 0.88.1
Dia Dia 0.94
Dia Dia 0.92.2
Dia Dia 0.87
5.5
CVSSv3
CVE-2019-19746
make_arrow in arrow.c in Xfig fig2dev 3.2.7b allows a segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type.
Fig2dev Project Fig2dev 3.2.7b
Fedoraproject Fedora 31
Fedoraproject Fedora 32
5.5
CVSSv3
CVE-2020-21682
A global buffer overflow in the set_fill component in genge.c of fig2dev 3.2.7b allows malicious users to cause a denial of service (DOS) via converting a xfig file into ge format.
Fig2dev Project Fig2dev 3.2.7b
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »