Xfigproject
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in any Xfigproject product.
RSS Feeds for Xfigproject security vulnerabilities
Create a CVE RSS feed including security vulnerabilities found in Xfigproject products with stack.watch. Just hit watch, then grab your custom RSS feed url.
Products by Xfigproject Sorted by Most Security Vulnerabilities since 2018
By the Year
In 2025 there have been 0 vulnerabilities in Xfigproject. Xfigproject did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 1 | 9.80 |
| 2021 | 8 | 5.50 |
| 2020 | 0 | 0.00 |
| 2019 | 3 | 5.50 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Xfigproject vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Xfigproject Security Vulnerabilities
xfig 3.2.7 is vulnerable to Buffer Overflow.
CVE-2021-40241
9.8 - Critical
- October 31, 2022
xfig 3.2.7 is vulnerable to Buffer Overflow.
Classic Buffer Overflow
An issue was discovered in fig2dev before 3.2.8
CVE-2021-32280
5.5 - Medium
- September 20, 2021
An issue was discovered in fig2dev before 3.2.8.. A NULL pointer dereference exists in the function compute_closed_spline() located in trans_spline.c. It allows an attacker to cause Denial of Service. The fixed version of fig2dev is 3.2.8.
NULL Pointer Dereference
fig2dev 3.2.7b contains a segmentation fault in the gencgm_start function in gencgm.c.
CVE-2020-21535
5.5 - Medium
- September 16, 2021
fig2dev 3.2.7b contains a segmentation fault in the gencgm_start function in gencgm.c.
Out-of-bounds Read
fig2dev 3.2.7b contains a stack buffer overflow in the bezier_spline function in genepic.c.
CVE-2020-21529
5.5 - Medium
- September 16, 2021
fig2dev 3.2.7b contains a stack buffer overflow in the bezier_spline function in genepic.c.
Memory Corruption
fig2dev 3.2.7b contains a global buffer overflow in the get_line function in read.c.
CVE-2020-21534
5.5 - Medium
- September 16, 2021
fig2dev 3.2.7b contains a global buffer overflow in the get_line function in read.c.
Classic Buffer Overflow
fig2dev 3.2.7b contains a stack buffer overflow in the read_textobject function in read.c.
CVE-2020-21533
5.5 - Medium
- September 16, 2021
fig2dev 3.2.7b contains a stack buffer overflow in the read_textobject function in read.c.
Memory Corruption
fig2dev 3.2.7b contains a global buffer overflow in the setfigfont function in genepic.c.
CVE-2020-21532
5.5 - Medium
- September 16, 2021
fig2dev 3.2.7b contains a global buffer overflow in the setfigfont function in genepic.c.
Classic Buffer Overflow
fig2dev 3.2.7b contains a global buffer overflow in the conv_pattern_index function in gencgm.c.
CVE-2020-21531
5.5 - Medium
- September 16, 2021
fig2dev 3.2.7b contains a global buffer overflow in the conv_pattern_index function in gencgm.c.
Classic Buffer Overflow
fig2dev 3.2.7b contains a segmentation fault in the read_objects function in read.c.
CVE-2020-21530
5.5 - Medium
- September 16, 2021
fig2dev 3.2.7b contains a segmentation fault in the read_objects function in read.c.
read_colordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write.
CVE-2019-19797
5.5 - Medium
- December 15, 2019
read_colordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write.
Memory Corruption