Fig2dev Xfigproject Fig2dev

Do you want an email whenever new security vulnerabilities are reported in Xfigproject Fig2dev?

By the Year

In 2021 there have been 8 vulnerabilities in Xfigproject Fig2dev with an average score of 5.5 out of ten. Fig2dev did not have any published security vulnerabilities last year. That is, 8 more vulnerabilities have already been reported in 2021 as compared to last year.

Year Vulnerabilities Average Score
2021 8 5.50
2020 0 0.00
2019 2 5.50
2018 0 0.00

It may take a day or so for new Fig2dev vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Xfigproject Fig2dev Security Vulnerabilities

An issue was discovered in fig2dev before 3.2.8

CVE-2021-32280 5.5 - Medium - September 20, 2021

An issue was discovered in fig2dev before 3.2.8.. A NULL pointer dereference exists in the function compute_closed_spline() located in trans_spline.c. It allows an attacker to cause Denial of Service. The fixed version of fig2dev is 3.2.8.

NULL Pointer Dereference

fig2dev 3.2.7b contains a segmentation fault in the gencgm_start function in gencgm.c.

CVE-2020-21535 5.5 - Medium - September 16, 2021

fig2dev 3.2.7b contains a segmentation fault in the gencgm_start function in gencgm.c.

Buffer Overflow

fig2dev 3.2.7b contains a stack buffer overflow in the bezier_spline function in genepic.c.

CVE-2020-21529 5.5 - Medium - September 16, 2021

fig2dev 3.2.7b contains a stack buffer overflow in the bezier_spline function in genepic.c.

Memory Corruption

fig2dev 3.2.7b contains a global buffer overflow in the get_line function in read.c.

CVE-2020-21534 5.5 - Medium - September 16, 2021

fig2dev 3.2.7b contains a global buffer overflow in the get_line function in read.c.

Classic Buffer Overflow

fig2dev 3.2.7b contains a stack buffer overflow in the read_textobject function in read.c.

CVE-2020-21533 5.5 - Medium - September 16, 2021

fig2dev 3.2.7b contains a stack buffer overflow in the read_textobject function in read.c.

Memory Corruption

fig2dev 3.2.7b contains a global buffer overflow in the setfigfont function in genepic.c.

CVE-2020-21532 5.5 - Medium - September 16, 2021

fig2dev 3.2.7b contains a global buffer overflow in the setfigfont function in genepic.c.

Classic Buffer Overflow

fig2dev 3.2.7b contains a global buffer overflow in the conv_pattern_index function in gencgm.c.

CVE-2020-21531 5.5 - Medium - September 16, 2021

fig2dev 3.2.7b contains a global buffer overflow in the conv_pattern_index function in gencgm.c.

Classic Buffer Overflow

fig2dev 3.2.7b contains a segmentation fault in the read_objects function in read.c.

CVE-2020-21530 5.5 - Medium - September 16, 2021

fig2dev 3.2.7b contains a segmentation fault in the read_objects function in read.c.

read_colordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write.

CVE-2019-19797 5.5 - Medium - December 15, 2019

read_colordef in read.c in Xfig fig2dev 3.2.7b has an out-of-bounds write.

Memory Corruption

Xfig fig2dev 3.2.7a has a stack-based buffer overflow in the calc_arrow function in bound.c.

CVE-2019-14275 5.5 - Medium - July 26, 2019

Xfig fig2dev 3.2.7a has a stack-based buffer overflow in the calc_arrow function in bound.c.

Memory Corruption

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Xfigproject Fig2dev or by Xfigproject? Click the Watch button to subscribe.

Xfigproject
Vendor

subscribe