Download
| Alert*
oval:org.secpod.oval:def:704310
transfig: Utilities for converting XFig figure files transfig could be made to execute arbitrary code if it received a specially crafted FIG file. oval:org.secpod.oval:def:52114 transfig: Utilities for converting XFig figure files transfig could be made to execute arbitrary code if it received a specially crafted FIG file. oval:org.secpod.oval:def:2000954 A buffer underwrite vulnerability in get_line in fig2dev 3.2.7a allows an attacker to write prior to the beginning of the buffer via a crafted .fig file. oval:org.secpod.oval:def:89000251 This update for transfig fixes the following issues: Security issue fixed: - CVE-2019-14275: Fixed stack-based buffer overflow in the calc_arrow function . - CVE-2018-16140: Fixed a buffer underwrite vulnerability in get_line in read.c, which allowed an attacker to write prior to the beginning of th ... |